Korean
<< Back
VID 28145
Severity 40
Port 139,445
Protocol TCP
Class SMB
Detailed Description The WinAMP program, according to its version number, has a buffer overflow flaw which exists in versions 5.21 and earlier. Nullsoft Winamp is a freely available media player for Microsoft Windows platforms. Winamp version 5.21 and earlier versions are vulnerable to a buffer overflow vulnerability in the in_midi.dll library. A remote attacker could exploit these vulnerabilities by sending a specially-crafted midi file (.mid), and enticing unsuspecting users to process the file. It might allow the attacker to execute arbitrary code on the affected system or possibly cause a denial of service.

* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.

* References:
http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-16.html
http://www.winamp.com/player/version_history.php
http://www.frsirt.com/english/advisories/2006/2422

* Platforms Affected:
Nullsoft Winamp version 5.21 and earlier versions
Microsoft Windows Any version
Recommendation Upgrade to the latest version of winamp (5.22 or later), available from the Nullsoft Winamp Download Web page at http://www.winamp.com/player/
Related URL (CVE)
Related URL 18507 (SecurityFocus)
Related URL 27219 (ISS)