Alert Number:  011808-01
Alert Date:  01/18/08
Alert Title:  Winamp update addresses vulnerability
Update-to:  None.
OS/Platform/Application:  Nullsoft Winamp all versions less than 5.52
Category:  ALERT
Severity:  MEDIUM
Attention:  System Administrators, Desktop Support Personnel, Winamp users

Summary:  Multiple Internet security resources are reporting the existence of a vulnerability in Nullsoft's popular Winamp media player program.  The vulnerability is rooted in a problem with overtly long artist or title file information.  The most likely mechanism of exploit would be the handling of a maliciously crafted media file and could result in takeover of a vulnerable system.  An updated version of Winamp (5.52) is available from the vendor to address this vulnerability.

Recommended Actions:  System administrators, support personnel and Winamp users are encouraged to read the security advisories (safe links provided below) and (if appropriate) apply the upgrade at their earliest convenience.

Readers are encouraged to share this alert with family, friends, and associates who may use Winamp on their home computers.

ITS Actions:  N/A

Resources:

Secuina Advisory:
http://secunia.com/advisories/27865/

FrSirt Advisory:
http://www.frsirt.com/english/advisories/2008/0183

Winamp download page:
http://www.winamp.com/player