Winamp Buffer Overflow in Processing the 'ultravox-max-msg' Header Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1017119
|
|
SecurityTracker URL: http://securitytracker.com/id?1017119
|
|
CVE Reference: CVE-2006-5567
(Links to External Site)
|
Updated: Jun 2 2008
|
Original Entry Date: Oct 25 2006
|
Impact: Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Advisory: iDEFENSE
|
Version(s): prior to 5.31
|
Description: A vulnerability was reported in Winamp. A remote user can execute arbitrary code on the target system.
A remote server can send a specially crafted 'ultravox-max-msg' header value to the connected target client to trigger a heap overflow
and execute arbitrary code on the target user's system. The code will run with the privileges of the target user.
Loading of
a playlist file, a 'shout:' URI, or a 'uvox:' URI are possible attack methods.
The vendor was notified on October 19, 2006.
iDefense
reported this vulnerability.
The original advisory is available at:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=431
|
Impact: A remote user can execute arbitrary code on the target system.
|
Solution: The vendor has issued a fixed version (5.31), available at:
http://www.winamp.com/
|
Vendor URL: www.winamp.com/ (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 25 Oct 2006 15:05:49 -0400
Subject: AOL Nullsoft Winamp Ultravox 'ultravox-max-msg' Header Heap Overflow Vulnerability
|
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=431
|
|
