[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Winamp vulnerability : technical study and Exploit released

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Winamp vulnerability : technical study and Exploit released
From: Rich Eicher <reicher@xxxxxxxxx>
Date: Wed, 24 Nov 2004 11:04:56 -0600

This may have something to do with why there is no patch out from Nullsoft.

http://www.betanews.com/article/Death_Knell_Sounds_for_Nullsoft_Winamp/1100111204


On Wed, 24 Nov 2004 07:08:52 -0800 (PST), ElviS .de <elvi52001@xxxxxxxxx> wrote:
> 
>  
> exploit and technical study of the Winamp flaw posted by k-otik 
>  http://www.k-otik.com/exploits/20041124.winampm3u.c.php 
>   
> "..the cdda library only reserves 20 bytes for names when files are .cda, so
> the stack will be overwritten and exception occurs when a name looks like
> aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.cda" 
>   
> but still NO patch from Winamp !!!
> 
>  ________________________________
> Do you Yahoo!?
>  Yahoo! Mail - You care about security. So do we. 
> 
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Winamp vulnerability : technical study and Exploit released
  - From: Brendan Dolan-Gavitt
- Re: [Full-Disclosure] Winamp vulnerability : technical study and Exploit released
  - From: David Vincent

References:
- [Full-Disclosure] Winamp vulnerability : technical study and Exploit released
  - From: ElviS .de

Prev by Date: Re: [Full-Disclosure] University Researchers Challenge Bush Win In Florida
Next by Date: Re: [Full-Disclosure] Re: signatures for Oracle Alert 68
Previous by thread: [Full-Disclosure] Winamp vulnerability : technical study and Exploit released
Next by thread: Re: [Full-Disclosure] Winamp vulnerability : technical study and Exploit released
Index(es):
- Date
- Thread