Winamp MP4 File Handling Memory Corruption Vulnerability
Secunia Advisory: SA25089 Release Date: 2007-05-01
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software: Winamp 5.x
Marsu has reported a vulnerability in Winamp, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error within the handling of MP4 files and can be exploited to cause memory corruption via a specially crafted MP4 file.
Successful exploitation allows execution of arbitrary code.
The vulnerability is reported in version 5.34. Other versions may also be affected.
Solution: Do not open untrusted MP4 files.
Provided and/or discovered by: Marsu
Original Advisory: http://milw0rm.com/exploits/3823