Re: New Winamp Security Vulnerability
Oh, I see what you mean. And you're right, it was great. Larry - Original Message - From: "Bruce Toews" <[EMAIL PROTECTED]> To: "PC audio discussion list. " Sent: Wednesday, February 01, 2006 6:54 PM Subject: Re: New Winamp Security Vulnerability > Actually, I was refering to AAC+ streams. Itunes, at least Itunes for the > Mac, didn't handle it when Shellworld Radio was experimenting with it. > Still brings a tear to my eye, as it is a wonderful format. > > Bruce > > -- > Bruce Toews > E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] > Web Site (including info on my weekly commentaries): http://www.ogts.net > Info on the Best TV Show of All Time: http://www.cornergas.com > > On Wed, 1 Feb 2006, Larry N wrote: > >> I wonder if that's true. I've never seen plug ins for earlier versions >> though. As for Bruce's comment concerning Winamp and aac, iTunes also >> plays >> it. Admittedly the program could be a whole lot more accessible than it >> is, >> but if a person simply wanted to play an aac file and for whatever reason >> didn't want to load Winamp, they could do it. I recognize that this is >> unlikely here, as Winamp is easily the most accessible player for most of >> us. Still, I enjoy giving other players a shot, just to see what they can >> do. >> >> Larry >> - Original Message - >> From: "Brent Harding" <[EMAIL PROTECTED]> >> To: "PC audio discussion list. " >> Sent: Wednesday, February 01, 2006 5:42 PM >> Subject: Re: New Winamp Security Vulnerability >> >> >>> They must have plugins for old versions to do AAC as well. >>> >>> - Original Message - >>> From: "Bruce Toews" <[EMAIL PROTECTED]> >>> To: "PC audio discussion list. " >>> Sent: Wednesday, February 01, 2006 1:31 PM >>> Subject: Re: New Winamp Security Vulnerability >>> >>> >>>> Windows Media also plays less file types, too. Last I heard you >>>> couldn't >>>> even play Vorbis files without a plugin. I'm assuming you'd need >>>> another >>>> plugin for flac as well, and Winamp is the only player I know of at >>>> this >>>> point that can play AAC+ files. >>>> >>>> Bruce >>>> >>>> -- >>>> Bruce Toews >>>> E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] >>>> Web Site (including info on my weekly commentaries): >>>> http://www.ogts.net >>>> Info on the Best TV Show of All Time: http://www.cornergas.com >>>> >>>> On Wed, 1 Feb 2006, Brent Harding wrote: >>>> >>>>> I think windows media player is more limiting actually. You can't >>>>> crossfade, >>>>> use dsp plugins, etc that winamp does. I use media player for streams >>>>> that >>>>> require it, but no more than that. >>>>> >>>>> - Original Message - >>>>> From: "Steve Pattison" <[EMAIL PROTECTED]> >>>>> To: "PC Audio" ; "Access-L" >>>>> <[EMAIL PROTECTED]> >>>>> Sent: Wednesday, February 01, 2006 6:11 AM >>>>> Subject: Fwd: New Winamp Security Vulnerability >>>>> >>>>> >>>>>> >>>>>>> To: [EMAIL PROTECTED] >>>>>>> From: Chipmunks [EMAIL PROTECTED] >>>>>>> >>>>>>> This just came off of a list I'm on. >>>>>>> >>>>>>> Doris >>>>>>> >>>>>>> New Winamp Security Vulnerability >>>>>>> >>>>>>> Tech News: >>>>>>> >>>>>>> Nullsoft has just released an update to Winamp aimed at fixing a >>>>>>> serious >>>>>>> security vulnerability that opened up systems to remote attack. >>>>>>> >>>>>>> The company posted version 5.13 of the media player online on >>>>>>> Monday >>>>>>> after Secunia and other security companies issued alerts about the >>>>>>> problem. >>>>>>> Malicious software exploiting the "extremely critical" flaw was >>>>>>> already >>>>>>> circulating on the Internet, according to Secunia's advisory. >>>>
Mack help please, was Re: New Winamp Security Vulnerability
I know Itunes is not accessible, but my friend has a libary of songs in Itunes, and he wants to print out a list of all his songs. He is using the Itunes software on a mack, or I would have given him print folder plus. So, any one know a good way he can export his songs so that he might be able to give me a list? --- ~_skype:mouki2005 ~_please sign my petition to make charter communications allow airing of adult swim at the following link: http://new.PetitionOnline.com/animem/petition.html thanks - Original Message - From: "Bruce Toews" <[EMAIL PROTECTED]> To: "PC audio discussion list. " Sent: Wednesday, February 01, 2006 3:54 PM Subject: Re: New Winamp Security Vulnerability > Actually, I was refering to AAC+ streams. Itunes, at least Itunes for the > Mac, didn't handle it when Shellworld Radio was experimenting with it. > Still brings a tear to my eye, as it is a wonderful format. > > Bruce > > -- > Bruce Toews > E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] > Web Site (including info on my weekly commentaries): http://www.ogts.net > Info on the Best TV Show of All Time: http://www.cornergas.com > > On Wed, 1 Feb 2006, Larry N wrote: > > > I wonder if that's true. I've never seen plug ins for earlier versions > > though. As for Bruce's comment concerning Winamp and aac, iTunes also plays > > it. Admittedly the program could be a whole lot more accessible than it is, > > but if a person simply wanted to play an aac file and for whatever reason > > didn't want to load Winamp, they could do it. I recognize that this is > > unlikely here, as Winamp is easily the most accessible player for most of > > us. Still, I enjoy giving other players a shot, just to see what they can > > do. > > > > Larry > > - Original Message - > > From: "Brent Harding" <[EMAIL PROTECTED]> > > To: "PC audio discussion list. " > > Sent: Wednesday, February 01, 2006 5:42 PM > > Subject: Re: New Winamp Security Vulnerability > > > > > >> They must have plugins for old versions to do AAC as well. > >> > >> - Original Message - > >> From: "Bruce Toews" <[EMAIL PROTECTED]> > >> To: "PC audio discussion list. " > >> Sent: Wednesday, February 01, 2006 1:31 PM > >> Subject: Re: New Winamp Security Vulnerability > >> > >> > >>> Windows Media also plays less file types, too. Last I heard you couldn't > >>> even play Vorbis files without a plugin. I'm assuming you'd need another > >>> plugin for flac as well, and Winamp is the only player I know of at this > >>> point that can play AAC+ files. > >>> > >>> Bruce > >>> > >>> -- > >>> Bruce Toews > >>> E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] > >>> Web Site (including info on my weekly commentaries): http://www.ogts.net > >>> Info on the Best TV Show of All Time: http://www.cornergas.com > >>> > >>> On Wed, 1 Feb 2006, Brent Harding wrote: > >>> > >>>> I think windows media player is more limiting actually. You can't > >>>> crossfade, > >>>> use dsp plugins, etc that winamp does. I use media player for streams > >>>> that > >>>> require it, but no more than that. > >>>> > >>>> - Original Message - > >>>> From: "Steve Pattison" <[EMAIL PROTECTED]> > >>>> To: "PC Audio" ; "Access-L" > >>>> <[EMAIL PROTECTED]> > >>>> Sent: Wednesday, February 01, 2006 6:11 AM > >>>> Subject: Fwd: New Winamp Security Vulnerability > >>>> > >>>> > >>>>> > >>>>>> To: [EMAIL PROTECTED] > >>>>>> From: Chipmunks [EMAIL PROTECTED] > >>>>>> > >>>>>> This just came off of a list I'm on. > >>>>>> > >>>>>> Doris > >>>>>> > >>>>>> New Winamp Security Vulnerability > >>>>>> > >>>>>> Tech News: > >>>>>> > >>>>>> Nullsoft has just released an update to Winamp aimed at fixing a > >>>>>> serious > >>>>>> security vulnerability that opened up systems to remote attack. > >>>>>> > >>>>>> The company posted version 5.13 of the media player online on > >&
Re: New Winamp Security Vulnerability
Actually, I was refering to AAC+ streams. Itunes, at least Itunes for the Mac, didn't handle it when Shellworld Radio was experimenting with it. Still brings a tear to my eye, as it is a wonderful format. Bruce -- Bruce Toews E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] Web Site (including info on my weekly commentaries): http://www.ogts.net Info on the Best TV Show of All Time: http://www.cornergas.com On Wed, 1 Feb 2006, Larry N wrote: > I wonder if that's true. I've never seen plug ins for earlier versions > though. As for Bruce's comment concerning Winamp and aac, iTunes also plays > it. Admittedly the program could be a whole lot more accessible than it is, > but if a person simply wanted to play an aac file and for whatever reason > didn't want to load Winamp, they could do it. I recognize that this is > unlikely here, as Winamp is easily the most accessible player for most of > us. Still, I enjoy giving other players a shot, just to see what they can > do. > > Larry > - Original Message - > From: "Brent Harding" <[EMAIL PROTECTED]> > To: "PC audio discussion list. " > Sent: Wednesday, February 01, 2006 5:42 PM > Subject: Re: New Winamp Security Vulnerability > > >> They must have plugins for old versions to do AAC as well. >> >> - Original Message - >> From: "Bruce Toews" <[EMAIL PROTECTED]> >> To: "PC audio discussion list. " >> Sent: Wednesday, February 01, 2006 1:31 PM >> Subject: Re: New Winamp Security Vulnerability >> >> >>> Windows Media also plays less file types, too. Last I heard you couldn't >>> even play Vorbis files without a plugin. I'm assuming you'd need another >>> plugin for flac as well, and Winamp is the only player I know of at this >>> point that can play AAC+ files. >>> >>> Bruce >>> >>> -- >>> Bruce Toews >>> E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] >>> Web Site (including info on my weekly commentaries): http://www.ogts.net >>> Info on the Best TV Show of All Time: http://www.cornergas.com >>> >>> On Wed, 1 Feb 2006, Brent Harding wrote: >>> >>>> I think windows media player is more limiting actually. You can't >>>> crossfade, >>>> use dsp plugins, etc that winamp does. I use media player for streams >>>> that >>>> require it, but no more than that. >>>> >>>> - Original Message - >>>> From: "Steve Pattison" <[EMAIL PROTECTED]> >>>> To: "PC Audio" ; "Access-L" >>>> <[EMAIL PROTECTED]> >>>> Sent: Wednesday, February 01, 2006 6:11 AM >>>> Subject: Fwd: New Winamp Security Vulnerability >>>> >>>> >>>>> >>>>>> To: [EMAIL PROTECTED] >>>>>> From: Chipmunks [EMAIL PROTECTED] >>>>>> >>>>>> This just came off of a list I'm on. >>>>>> >>>>>> Doris >>>>>> >>>>>> New Winamp Security Vulnerability >>>>>> >>>>>> Tech News: >>>>>> >>>>>> Nullsoft has just released an update to Winamp aimed at fixing a >>>>>> serious >>>>>> security vulnerability that opened up systems to remote attack. >>>>>> >>>>>> The company posted version 5.13 of the media player online on >>>>>> Monday >>>>>> after Secunia and other security companies issued alerts about the >>>>>> problem. >>>>>> Malicious software exploiting the "extremely critical" flaw was >>>>>> already >>>>>> circulating on the Internet, according to Secunia's advisory. >>>>>> >>>>>> A security researcher by the nickname of Kozan discovered the flaw >>>>>> in >>>>>> the >>>>>> Winamp 5.12 that can be exploited to compromise a user's system. Proof >>>>>> of >>>>>> concept code was published last Sunday. >>>>>> >>>>>> An attacker could exploit the flaw through a specially crafted >>>>>> playlist >>>>>> file. Upon opening the file, the flaw results in a buffer overflow, >>>>>> allowing >>>>>> the attacker to launch applications and take over control of a system. >>>>>> The
Re: New Winamp Security Vulnerability
I wonder if that's true. I've never seen plug ins for earlier versions though. As for Bruce's comment concerning Winamp and aac, iTunes also plays it. Admittedly the program could be a whole lot more accessible than it is, but if a person simply wanted to play an aac file and for whatever reason didn't want to load Winamp, they could do it. I recognize that this is unlikely here, as Winamp is easily the most accessible player for most of us. Still, I enjoy giving other players a shot, just to see what they can do. Larry - Original Message - From: "Brent Harding" <[EMAIL PROTECTED]> To: "PC audio discussion list. " Sent: Wednesday, February 01, 2006 5:42 PM Subject: Re: New Winamp Security Vulnerability > They must have plugins for old versions to do AAC as well. > > - Original Message - > From: "Bruce Toews" <[EMAIL PROTECTED]> > To: "PC audio discussion list. " > Sent: Wednesday, February 01, 2006 1:31 PM > Subject: Re: New Winamp Security Vulnerability > > >> Windows Media also plays less file types, too. Last I heard you couldn't >> even play Vorbis files without a plugin. I'm assuming you'd need another >> plugin for flac as well, and Winamp is the only player I know of at this >> point that can play AAC+ files. >> >> Bruce >> >> -- >> Bruce Toews >> E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] >> Web Site (including info on my weekly commentaries): http://www.ogts.net >> Info on the Best TV Show of All Time: http://www.cornergas.com >> >> On Wed, 1 Feb 2006, Brent Harding wrote: >> >>> I think windows media player is more limiting actually. You can't >>> crossfade, >>> use dsp plugins, etc that winamp does. I use media player for streams >>> that >>> require it, but no more than that. >>> >>> - Original Message - >>> From: "Steve Pattison" <[EMAIL PROTECTED]> >>> To: "PC Audio" ; "Access-L" >>> <[EMAIL PROTECTED]> >>> Sent: Wednesday, February 01, 2006 6:11 AM >>> Subject: Fwd: New Winamp Security Vulnerability >>> >>> >>>> >>>>> To: [EMAIL PROTECTED] >>>>> From: Chipmunks [EMAIL PROTECTED] >>>>> >>>>> This just came off of a list I'm on. >>>>> >>>>> Doris >>>>> >>>>> New Winamp Security Vulnerability >>>>> >>>>> Tech News: >>>>> >>>>> Nullsoft has just released an update to Winamp aimed at fixing a >>>>> serious >>>>> security vulnerability that opened up systems to remote attack. >>>>> >>>>> The company posted version 5.13 of the media player online on >>>>> Monday >>>>> after Secunia and other security companies issued alerts about the >>>>> problem. >>>>> Malicious software exploiting the "extremely critical" flaw was >>>>> already >>>>> circulating on the Internet, according to Secunia's advisory. >>>>> >>>>> A security researcher by the nickname of Kozan discovered the flaw >>>>> in >>>>> the >>>>> Winamp 5.12 that can be exploited to compromise a user's system. Proof >>>>> of >>>>> concept code was published last Sunday. >>>>> >>>>> An attacker could exploit the flaw through a specially crafted >>>>> playlist >>>>> file. Upon opening the file, the flaw results in a buffer overflow, >>>>> allowing >>>>> the attacker to launch applications and take over control of a system. >>>>> The >>>>> vulnerability effectively allows the attacker to turn the computer >>>>> into >>>>> a >>>>> zombie system or steal data from the system's hard drive. >>>>> >>>>> Even though the security company gave the vulnerability its >>>>> highest >>>>> rating for software threats, it noted that the number of people who >>>>> use >>>>> Winamp has declined over the years, so the scope of the problem is not >>>>> as >>>>> large as it once might have been. >>>>> >>>>> "Winamp used to be the world's most popular MP3 player and is >>>>> still >>>>> quite >>>>&
Re: New Winamp Security Vulnerability
They must have plugins for old versions to do AAC as well. - Original Message - From: "Bruce Toews" <[EMAIL PROTECTED]> To: "PC audio discussion list. " Sent: Wednesday, February 01, 2006 1:31 PM Subject: Re: New Winamp Security Vulnerability > Windows Media also plays less file types, too. Last I heard you couldn't > even play Vorbis files without a plugin. I'm assuming you'd need another > plugin for flac as well, and Winamp is the only player I know of at this > point that can play AAC+ files. > > Bruce > > -- > Bruce Toews > E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] > Web Site (including info on my weekly commentaries): http://www.ogts.net > Info on the Best TV Show of All Time: http://www.cornergas.com > > On Wed, 1 Feb 2006, Brent Harding wrote: > >> I think windows media player is more limiting actually. You can't >> crossfade, >> use dsp plugins, etc that winamp does. I use media player for streams >> that >> require it, but no more than that. >> >> - Original Message - >> From: "Steve Pattison" <[EMAIL PROTECTED]> >> To: "PC Audio" ; "Access-L" >> <[EMAIL PROTECTED]> >> Sent: Wednesday, February 01, 2006 6:11 AM >> Subject: Fwd: New Winamp Security Vulnerability >> >> >>> >>>> To: [EMAIL PROTECTED] >>>> From: Chipmunks [EMAIL PROTECTED] >>>> >>>> This just came off of a list I'm on. >>>> >>>> Doris >>>> >>>> New Winamp Security Vulnerability >>>> >>>> Tech News: >>>> >>>> Nullsoft has just released an update to Winamp aimed at fixing a >>>> serious >>>> security vulnerability that opened up systems to remote attack. >>>> >>>> The company posted version 5.13 of the media player online on >>>> Monday >>>> after Secunia and other security companies issued alerts about the >>>> problem. >>>> Malicious software exploiting the "extremely critical" flaw was already >>>> circulating on the Internet, according to Secunia's advisory. >>>> >>>> A security researcher by the nickname of Kozan discovered the flaw >>>> in >>>> the >>>> Winamp 5.12 that can be exploited to compromise a user's system. Proof >>>> of >>>> concept code was published last Sunday. >>>> >>>> An attacker could exploit the flaw through a specially crafted >>>> playlist >>>> file. Upon opening the file, the flaw results in a buffer overflow, >>>> allowing >>>> the attacker to launch applications and take over control of a system. >>>> The >>>> vulnerability effectively allows the attacker to turn the computer into >>>> a >>>> zombie system or steal data from the system's hard drive. >>>> >>>> Even though the security company gave the vulnerability its highest >>>> rating for software threats, it noted that the number of people who use >>>> Winamp has declined over the years, so the scope of the problem is not >>>> as >>>> large as it once might have been. >>>> >>>> "Winamp used to be the world's most popular MP3 player and is still >>>> quite >>>> popular, but as Windows Media Player has gotten better, some users have >>>> migrated over," said Thomas Kristensen, Secunia's chief technology >>>> officer, >>>> to CNETnews.com. >>>> >>>> "We aren't aware of any systems that have been compromised yet, but >>>> it's >>>> likely to happen since there's exploit code out," Kristensen said. >>>> >>>> Well, as you can plainly see, nothing is safe anymore. Not even >>>> your >>>> music player. So, if you want to keep your system safe, go to >>>> www.winamp.com/player/ >>>> and get the latest Winamp version. >>> >>> Regards Steve >>> Email: [EMAIL PROTECTED] >>> Skype: steve1963 >>> MSN Messenger: [EMAIL PROTECTED] >>> >>> >>> ___ >>> PC-Audio List Help, Guidelines, Archives and more... >>> http://www.pc-audio.org >>> >>> To unsubscribe from this list, send a blank email to: >>> [EMAIL PROTECTED] >>&
Re: New Winamp Security Vulnerability
Windows Media also plays less file types, too. Last I heard you couldn't even play Vorbis files without a plugin. I'm assuming you'd need another plugin for flac as well, and Winamp is the only player I know of at this point that can play AAC+ files. Bruce -- Bruce Toews E-mail and MSN/Windows Messenger: [EMAIL PROTECTED] Web Site (including info on my weekly commentaries): http://www.ogts.net Info on the Best TV Show of All Time: http://www.cornergas.com On Wed, 1 Feb 2006, Brent Harding wrote: > I think windows media player is more limiting actually. You can't crossfade, > use dsp plugins, etc that winamp does. I use media player for streams that > require it, but no more than that. > > - Original Message - > From: "Steve Pattison" <[EMAIL PROTECTED]> > To: "PC Audio" ; "Access-L" <[EMAIL PROTECTED]> > Sent: Wednesday, February 01, 2006 6:11 AM > Subject: Fwd: New Winamp Security Vulnerability > > >> >>> To: [EMAIL PROTECTED] >>> From: Chipmunks [EMAIL PROTECTED] >>> >>> This just came off of a list I'm on. >>> >>> Doris >>> >>> New Winamp Security Vulnerability >>> >>> Tech News: >>> >>> Nullsoft has just released an update to Winamp aimed at fixing a serious >>> security vulnerability that opened up systems to remote attack. >>> >>> The company posted version 5.13 of the media player online on Monday >>> after Secunia and other security companies issued alerts about the >>> problem. >>> Malicious software exploiting the "extremely critical" flaw was already >>> circulating on the Internet, according to Secunia's advisory. >>> >>> A security researcher by the nickname of Kozan discovered the flaw in >>> the >>> Winamp 5.12 that can be exploited to compromise a user's system. Proof of >>> concept code was published last Sunday. >>> >>> An attacker could exploit the flaw through a specially crafted >>> playlist >>> file. Upon opening the file, the flaw results in a buffer overflow, >>> allowing >>> the attacker to launch applications and take over control of a system. The >>> vulnerability effectively allows the attacker to turn the computer into a >>> zombie system or steal data from the system's hard drive. >>> >>> Even though the security company gave the vulnerability its highest >>> rating for software threats, it noted that the number of people who use >>> Winamp has declined over the years, so the scope of the problem is not as >>> large as it once might have been. >>> >>> "Winamp used to be the world's most popular MP3 player and is still >>> quite >>> popular, but as Windows Media Player has gotten better, some users have >>> migrated over," said Thomas Kristensen, Secunia's chief technology >>> officer, >>> to CNETnews.com. >>> >>> "We aren't aware of any systems that have been compromised yet, but >>> it's >>> likely to happen since there's exploit code out," Kristensen said. >>> >>> Well, as you can plainly see, nothing is safe anymore. Not even your >>> music player. So, if you want to keep your system safe, go to >>> www.winamp.com/player/ >>> and get the latest Winamp version. >> >> Regards Steve >> Email: [EMAIL PROTECTED] >> Skype: steve1963 >> MSN Messenger: [EMAIL PROTECTED] >> >> >> ___ >> PC-Audio List Help, Guidelines, Archives and more... >> http://www.pc-audio.org >> >> To unsubscribe from this list, send a blank email to: >> [EMAIL PROTECTED] >> >> This list is a service of MosenExplosion.com. To see what other lists we >> offer, visit us on the web at http://www.MosenExplosion.com >> > > > ___ > PC-Audio List Help, Guidelines, Archives and more... > http://www.pc-audio.org > > To unsubscribe from this list, send a blank email to: > [EMAIL PROTECTED] > > This list is a service of MosenExplosion.com. To see what other lists we > offer, visit us on the web at http://www.MosenExplosion.com > ___ PC-Audio List Help, Guidelines, Archives and more... http://www.pc-audio.org To unsubscribe from this list, send a blank email to: [EMAIL PROTECTED] This list is a service of MosenExplosion.com. To see what other lists we offer, visit us on the web at http://www.MosenExplosion.com
Re: New Winamp Security Vulnerability
Steve, One of the questions that I have not seen answered is whether or not earlier versions of Win Amp are compromised by this problem; what do you think? In other words, does one need to download this patch, if they are using, say, 5.09 or something? Thanks, Mac Norins Original Message - From: "Steve Pattison" <[EMAIL PROTECTED]> To: "PC Audio" ; "Access-L" <[EMAIL PROTECTED]> Sent: Wednesday, February 01, 2006 4:11 AM Subject: Fwd: New Winamp Security Vulnerability >To: [EMAIL PROTECTED] >From: Chipmunks [EMAIL PROTECTED] > >This just came off of a list I'm on. > >Doris > >New Winamp Security Vulnerability > >Tech News: > >Nullsoft has just released an update to Winamp aimed at fixing a serious >security vulnerability that opened up systems to remote attack. > > The company posted version 5.13 of the media player online on Monday >after Secunia and other security companies issued alerts about the problem. >Malicious software exploiting the "extremely critical" flaw was already >circulating on the Internet, according to Secunia's advisory. > > A security researcher by the nickname of Kozan discovered the flaw in > the >Winamp 5.12 that can be exploited to compromise a user's system. Proof of >concept code was published last Sunday. > > An attacker could exploit the flaw through a specially crafted > playlist >file. Upon opening the file, the flaw results in a buffer overflow, >allowing >the attacker to launch applications and take over control of a system. The >vulnerability effectively allows the attacker to turn the computer into a >zombie system or steal data from the system's hard drive. > > Even though the security company gave the vulnerability its highest >rating for software threats, it noted that the number of people who use >Winamp has declined over the years, so the scope of the problem is not as >large as it once might have been. > > "Winamp used to be the world's most popular MP3 player and is still > quite >popular, but as Windows Media Player has gotten better, some users have >migrated over," said Thomas Kristensen, Secunia's chief technology officer, >to CNETnews.com. > > "We aren't aware of any systems that have been compromised yet, but > it's >likely to happen since there's exploit code out," Kristensen said. > > Well, as you can plainly see, nothing is safe anymore. Not even your >music player. So, if you want to keep your system safe, go to >www.winamp.com/player/ >and get the latest Winamp version. Regards Steve Email: [EMAIL PROTECTED] Skype: steve1963 MSN Messenger: [EMAIL PROTECTED] ___ PC-Audio List Help, Guidelines, Archives and more... http://www.pc-audio.org To unsubscribe from this list, send a blank email to: [EMAIL PROTECTED] This list is a service of MosenExplosion.com. To see what other lists we offer, visit us on the web at http://www.MosenExplosion.com ___ PC-Audio List Help, Guidelines, Archives and more... http://www.pc-audio.org To unsubscribe from this list, send a blank email to: [EMAIL PROTECTED] This list is a service of MosenExplosion.com. To see what other lists we offer, visit us on the web at http://www.MosenExplosion.com
Re: New Winamp Security Vulnerability
i use winamp primarily because of my streaming technology tj - Original Message - From: "Brent Harding" <[EMAIL PROTECTED]> To: "PC audio discussion list. " Sent: Wednesday, February 01, 2006 10:42 AM Subject: Re: New Winamp Security Vulnerability >I think windows media player is more limiting actually. You can't >crossfade, > use dsp plugins, etc that winamp does. I use media player for streams that > require it, but no more than that. > > - Original Message - > From: "Steve Pattison" <[EMAIL PROTECTED]> > To: "PC Audio" ; "Access-L" <[EMAIL PROTECTED]> > Sent: Wednesday, February 01, 2006 6:11 AM > Subject: Fwd: New Winamp Security Vulnerability > > >> >>>To: [EMAIL PROTECTED] >>>From: Chipmunks [EMAIL PROTECTED] >>> >>>This just came off of a list I'm on. >>> >>>Doris >>> >>>New Winamp Security Vulnerability >>> >>>Tech News: >>> >>>Nullsoft has just released an update to Winamp aimed at fixing a serious >>>security vulnerability that opened up systems to remote attack. >>> >>> The company posted version 5.13 of the media player online on Monday >>>after Secunia and other security companies issued alerts about the >>>problem. >>>Malicious software exploiting the "extremely critical" flaw was already >>>circulating on the Internet, according to Secunia's advisory. >>> >>> A security researcher by the nickname of Kozan discovered the flaw >>> in >>> the >>>Winamp 5.12 that can be exploited to compromise a user's system. Proof of >>>concept code was published last Sunday. >>> >>> An attacker could exploit the flaw through a specially crafted >>> playlist >>>file. Upon opening the file, the flaw results in a buffer overflow, >>>allowing >>>the attacker to launch applications and take over control of a system. >>>The >>>vulnerability effectively allows the attacker to turn the computer into a >>>zombie system or steal data from the system's hard drive. >>> >>> Even though the security company gave the vulnerability its highest >>>rating for software threats, it noted that the number of people who use >>>Winamp has declined over the years, so the scope of the problem is not as >>>large as it once might have been. >>> >>> "Winamp used to be the world's most popular MP3 player and is still >>> quite >>>popular, but as Windows Media Player has gotten better, some users have >>>migrated over," said Thomas Kristensen, Secunia's chief technology >>>officer, >>>to CNETnews.com. >>> >>> "We aren't aware of any systems that have been compromised yet, but >>> it's >>>likely to happen since there's exploit code out," Kristensen said. >>> >>> Well, as you can plainly see, nothing is safe anymore. Not even your >>>music player. So, if you want to keep your system safe, go to >>>www.winamp.com/player/ >>>and get the latest Winamp version. >> >> Regards Steve >> Email: [EMAIL PROTECTED] >> Skype: steve1963 >> MSN Messenger: [EMAIL PROTECTED] >> >> >> ___ >> PC-Audio List Help, Guidelines, Archives and more... >> http://www.pc-audio.org >> >> To unsubscribe from this list, send a blank email to: >> [EMAIL PROTECTED] >> >> This list is a service of MosenExplosion.com. To see what other lists we >> offer, visit us on the web at http://www.MosenExplosion.com >> > > > ___ > PC-Audio List Help, Guidelines, Archives and more... > http://www.pc-audio.org > > To unsubscribe from this list, send a blank email to: > [EMAIL PROTECTED] > > This list is a service of MosenExplosion.com. To see what other lists we > offer, visit us on the web at http://www.MosenExplosion.com > ___ PC-Audio List Help, Guidelines, Archives and more... http://www.pc-audio.org To unsubscribe from this list, send a blank email to: [EMAIL PROTECTED] This list is a service of MosenExplosion.com. To see what other lists we offer, visit us on the web at http://www.MosenExplosion.com
Re: New Winamp Security Vulnerability
I think windows media player is more limiting actually. You can't crossfade, use dsp plugins, etc that winamp does. I use media player for streams that require it, but no more than that. - Original Message - From: "Steve Pattison" <[EMAIL PROTECTED]> To: "PC Audio" ; "Access-L" <[EMAIL PROTECTED]> Sent: Wednesday, February 01, 2006 6:11 AM Subject: Fwd: New Winamp Security Vulnerability > >>To: [EMAIL PROTECTED] >>From: Chipmunks [EMAIL PROTECTED] >> >>This just came off of a list I'm on. >> >>Doris >> >>New Winamp Security Vulnerability >> >>Tech News: >> >>Nullsoft has just released an update to Winamp aimed at fixing a serious >>security vulnerability that opened up systems to remote attack. >> >> The company posted version 5.13 of the media player online on Monday >>after Secunia and other security companies issued alerts about the >>problem. >>Malicious software exploiting the "extremely critical" flaw was already >>circulating on the Internet, according to Secunia's advisory. >> >> A security researcher by the nickname of Kozan discovered the flaw in >> the >>Winamp 5.12 that can be exploited to compromise a user's system. Proof of >>concept code was published last Sunday. >> >> An attacker could exploit the flaw through a specially crafted >> playlist >>file. Upon opening the file, the flaw results in a buffer overflow, >>allowing >>the attacker to launch applications and take over control of a system. The >>vulnerability effectively allows the attacker to turn the computer into a >>zombie system or steal data from the system's hard drive. >> >> Even though the security company gave the vulnerability its highest >>rating for software threats, it noted that the number of people who use >>Winamp has declined over the years, so the scope of the problem is not as >>large as it once might have been. >> >> "Winamp used to be the world's most popular MP3 player and is still >> quite >>popular, but as Windows Media Player has gotten better, some users have >>migrated over," said Thomas Kristensen, Secunia's chief technology >>officer, >>to CNETnews.com. >> >> "We aren't aware of any systems that have been compromised yet, but >> it's >>likely to happen since there's exploit code out," Kristensen said. >> >> Well, as you can plainly see, nothing is safe anymore. Not even your >>music player. So, if you want to keep your system safe, go to >>www.winamp.com/player/ >>and get the latest Winamp version. > > Regards Steve > Email: [EMAIL PROTECTED] > Skype: steve1963 > MSN Messenger: [EMAIL PROTECTED] > > > ___ > PC-Audio List Help, Guidelines, Archives and more... > http://www.pc-audio.org > > To unsubscribe from this list, send a blank email to: > [EMAIL PROTECTED] > > This list is a service of MosenExplosion.com. To see what other lists we > offer, visit us on the web at http://www.MosenExplosion.com > ___ PC-Audio List Help, Guidelines, Archives and more... http://www.pc-audio.org To unsubscribe from this list, send a blank email to: [EMAIL PROTECTED] This list is a service of MosenExplosion.com. To see what other lists we offer, visit us on the web at http://www.MosenExplosion.com
Fwd: New Winamp Security Vulnerability
>To: [EMAIL PROTECTED] >From: Chipmunks [EMAIL PROTECTED] > >This just came off of a list I'm on. > >Doris > >New Winamp Security Vulnerability > >Tech News: > >Nullsoft has just released an update to Winamp aimed at fixing a serious >security vulnerability that opened up systems to remote attack. > > The company posted version 5.13 of the media player online on Monday >after Secunia and other security companies issued alerts about the problem. >Malicious software exploiting the "extremely critical" flaw was already >circulating on the Internet, according to Secunia's advisory. > > A security researcher by the nickname of Kozan discovered the flaw in the >Winamp 5.12 that can be exploited to compromise a user's system. Proof of >concept code was published last Sunday. > > An attacker could exploit the flaw through a specially crafted playlist >file. Upon opening the file, the flaw results in a buffer overflow, allowing >the attacker to launch applications and take over control of a system. The >vulnerability effectively allows the attacker to turn the computer into a >zombie system or steal data from the system's hard drive. > > Even though the security company gave the vulnerability its highest >rating for software threats, it noted that the number of people who use >Winamp has declined over the years, so the scope of the problem is not as >large as it once might have been. > > "Winamp used to be the world's most popular MP3 player and is still quite >popular, but as Windows Media Player has gotten better, some users have >migrated over," said Thomas Kristensen, Secunia's chief technology officer, >to CNETnews.com. > > "We aren't aware of any systems that have been compromised yet, but it's >likely to happen since there's exploit code out," Kristensen said. > > Well, as you can plainly see, nothing is safe anymore. Not even your >music player. So, if you want to keep your system safe, go to >www.winamp.com/player/ >and get the latest Winamp version. Regards Steve Email: [EMAIL PROTECTED] Skype: steve1963 MSN Messenger: [EMAIL PROTECTED] ___ PC-Audio List Help, Guidelines, Archives and more... http://www.pc-audio.org To unsubscribe from this list, send a blank email to: [EMAIL PROTECTED] This list is a service of MosenExplosion.com. To see what other lists we offer, visit us on the web at http://www.MosenExplosion.com
