U.S. Flag Official website of the Department of Homeland Security

Note: This page is part of the us-cert.gov archive.This document is part of the US-CERT website archive. These documents are no longer updated and may contain outdated information. Links may also no longer function. Please contact info@us-cert.gov if you have any questions about the US-CERT website archive.

TLP:WHITE

Alert (SA06-032A)

Winamp Playlist Vulnerability

Original release date: February 01, 2006 | Last revised: February 23, 2006

Systems Affected

  • Microsoft Windows systems that have Winamp installed.

Overview

Winamp, a popular media player, has a vulnerability that could allow an attacker to take control of your system. Upgrading to the latest version of Winamp will take care of this vulnerability.

Solution

Install an Update

You can download and install Winamp 5.2 to avoid the vulnerability.

Description

A vulnerability in Winamp 5.13, and possibly in earlier versions, allows an attacker to run malicious code on your system when you open a playlist file. This malicious code could also be embedded in a web page, and could execute, without your knowledge, when you visit a malicious web page or open an HTML document.

For more technical information, see US-CERT Technical Alert TA06-032A.


References


.

Revision History

  • February 1, 2006: Initial release
    February 23, 2006: Changed Winamp version to 5.2

Last updated

This product is provided subject to this Notification and this Privacy & Use policy.

Was this document helpful?  Yes  |  Somewhat  |  No

Back to Top