Update: Winamp MP3 code execution flaw fixed

We pass this one along because employees in your organisation may use this software to listen to music while they work. There's a possibility that malicious code could be executed when the Winamp mini-browser is active. MP3 files carry meta tags that provide the song title, artist and album. Winamp uses this information to look up more information on the given song. A user could exploit the URL passed to the minibrowser that displays the additional information to cause an overflow and execute code on the machine. Winamp 2.80 fixes the problem.

Download the latest Winamp client from

http://www.winamp.com/

Join the newsletter!

Or
Error: Please check your email address.
Show Comments