Korean

<< Back VID 28290 Severity 40 Port 139,445 Protocol TCP Class SMB Detailed Description A version of WinAMP program which is older than 5.6 has been installed on the host. AOL Nullsoft Winamp is a freely available media player for Microsoft Windows platforms. The installed version of WinAMP is affected by multiple vulnerabilities. - An integer overflow vulnerability exists in the 'in_nsv.dll' plugin when parsing the table of contents of a NullSoft Video (NSV) stream or file.(CVE-2010-2586) - A heap-based buffer overflow vulnerability exists in the 'in_midi.dll' plugin when parsing MIDI content.(CVE-2010-4370) - A buffer overflow vulnerability exists in the 'in_mod' plugin and is related to the comment box.(CVE-2010-4371) - Another integer overflow vulnerability exists in the 'in_nsv' plugin due to improper memory allocation for Nullsoft Video (NSV) metadata.(CVE-2010-4372) - An error exists in the 'in_mp4' plugin which allows remote attackers to use either crafted metadata or album art in an MP4 file to cause a denial of service.(CVE-2010-4373) - An error exists in the 'in_mkv' plugin which allows remote attackers to use a crafted Matroska Video (MKV) file to cause a denial of service.(CVE-2010-4374) * Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts. * References: http://secunia.com/secunia_research/2010-127/ http://forums.winamp.com/showthread.php?threadid=159785 http://forums.winamp.com/showthread.php?t=324322 * Platforms Affected: AOL Nullsoft Winamp versions prior to 5.6 Microsoft Windows Any version Recommendation Upgrade to the latest version of winamp (5.6 or later), available from the Nullsoft Winamp Download Web page at http://www.winamp.com/player/ Related URL CVE-2010-2586,CVE-2010-4370,CVE-2010-4371,CVE-2010-4372,CVE-2010-4373,CVE-2010-4374 (CVE) Related URL 45097 (SecurityFocus) Related URL (ISS)