ITS Homepage Click here for text version of ITS homepage University at AlbanyUAlbany Site IndexUAlbany Search
alerts_tag
ITS Alerts
Updated version of WinAmp fixes security vulnerabilities


ALARM Group ALERT - click for a description of ALARM, The Computing Alert System
Alert Number:  070606-01
Alert Date:  7/6/06
Alert Title:  Updated version of WinAmp fixes security vulnerabilities
Update-to:   none
OS/Platform/Application:  OS/Platform/Application: WinAmp < V5.24 on Windows systems
Category:  ALERT
Severity:  MEDIUM
Attention:  Windows System Administrators, Desktop Support Personnel, WinAmp media
player users.

Summary:   WinAmp has released an update to its self-named popular alternative media player that fixes a security issue that is believed to affect all earlier versions of the software.  According to Secunia Research and Fortinet, the vulnerability can be exploited by loading a maliciously-crafted MIDI file, resulting in remote access to the host system.

Recommended Actions:  Since this software still has a wide range of users, Windows System Administrators and other Support Personnel/end users are encouraged to upgrade systems which have WinAmp installed to version 5.24 at their earliest convenience.

ITS Actions: No additional actions are being taken to address this issue at the current time. 

Resources:

Vendor Site:
WinAmp
http://www.winamp.com/player/version_history.php#5.24

Secunia Resarch:
http://secunia.com/advisories/20722

Fortinet:
http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-16.html
 

BLANKABCDEFGHIJKLMBLANK
BLANKNOPQRSTUVWXYZBLANK
CHOOSE FROM the ITS Site Index

GO TO an ITS Group

Information Technology Services
University at Albany, SUNY
1400 Washington Avenue
Albany, NY 12222
ITS Service Centers:  518-442-4000
  		University at Albany Home Page
Contact UAlbany | Directories | Calendars | Visitors | Site Index | Search
Admissions | Academics | Research | IT Services | Libraries | Athletics
Internet Privacy Policy              IT Policies