Korean

<< Back VID 28206 Severity 40 Port 139,445 Protocol TCP Class SMB Detailed Description A version of WinAMP program which is older than 5.34 has been installed on the host. AOL Nullsoft Winamp is a freely available media player for Microsoft Windows platforms. Winamp versions prior to 5.34 could allow a remote attacker to execute arbitrary code on the affected host, caused by two vulnerabilities in the LIBSNDFILE.DLL library and the IN_MOD.DLL library modules. A remote attacker could exploit these vulnerabilities by creating a specially-crafted MAT (MATLAB SOUND FILE), IT or S3M file, and enticing unsuspecting users to process the file. It might allow the attacker to execute arbitrary code on the affected system or possibly cause a denial of service. * Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts. * References: http://www.winamp.com/player/version_history.php http://forums.winamp.com/showthread.php?threadid=269831 http://www.piotrbania.com/all/adv/nullsoft-winamp-libsndfile-adv.txt http://www.piotrbania.com/all/adv/nullsoft-winamp-s3m_module-in_mod-adv.txt http://www.piotrbania.com/all/adv/nullsoft-winamp-it_module-in_mod-adv.txt http://www.securityfocus.com/archive/1/464889/30/0/threaded http://www.securityfocus.com/archive/1/464890/30/0/threaded http://www.securityfocus.com/archive/1/464893/30/0/threaded http://www.frsirt.com/english/advisories/2007/1286 http://securitytracker.com/alerts/2007/Apr/1017886.html http://secunia.com/advisories/24766 * Platforms Affected: AOL Nullsoft Winamp versions prior to 5.34 Microsoft Windows Any version Recommendation Upgrade to the latest version of winamp (5.34 or later), available from the Nullsoft Winamp Download Web page at http://www.winamp.com/player/ Related URL CVE-2007-1921,CVE-2007-1922 (CVE) Related URL 23350,23351 (SecurityFocus) Related URL 33480,33481 (ISS)