Update: Winamp MP3 code execution flaw fixed

We pass this one along because employees in your organisation may use this software to listen to music while they work. There's a possibility that malicious code could be executed when the Winamp mini-browser is active. MP3 files carry meta tags that provide the song title, artist and album. Winamp uses this information to look up more information on the given song. A user could exploit the URL passed to the minibrowser that displays the additional information to cause an overflow and execute code on the machine. Winamp 2.80 fixes the problem.

Download the latest Winamp client from


Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments