Winamp Gen_ff.dll Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is installed with Winamp and is prone to Buffer Overflow vulnerability.

Impact

Attackers may leverage this issue by executing arbitrary codes in the context of the affected application via specially crafted .maki files and can cause denial of service. Impact Level: System/Application

Solution

Upgrade to the version 5.552 http://www.winamp.com/player

Insight

The vulnerability exists in the gen_ff.dll file which is prone to integer overflow due to an incorrect type cast error while processing malicious .maki file.

Affected

Winamp version 5.55 and prior on Windows.

References

http://vrt-sourcefire.blogspot.com/2009/05/winamp-maki-parsing-vulnerability.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-1831

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Cscope Multiple Buffer Overflow vulnerability
Citrix Provisioning Services 'streamprocess.exe' Component Remote Code Execution Vulnerability
Apple iTunes 'itms:' URI Stack Buffer Overflow Vulnerability
Audacity Buffer Overflow Vulnerability (Win)
Adobe Reader/Acrobat Multimedia Doc.media.newPlayer Code Execution Vulnerability (Win)

Winamp gen_ff.dll Buffer Overflow Vulnerability

Take action and discover your vulnerabilities