NullSoft Winamp Long File Name Denial of Service Vulnerability
BID:9920
Info
NullSoft Winamp Long File Name Denial of Service Vulnerability
| Bugtraq ID: | 9920 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 19 2004 12:00AM |
| Updated: | Mar 19 2004 12:00AM |
| Credit: | Discovery is credited to Tobias Welter <[email protected]>. |
| Vulnerable: |
NullSoft Winamp 5.0 2 |
| Not Vulnerable: |
NullSoft Winamp 5.0 3 |
Discussion
NullSoft Winamp Long File Name Denial of Service Vulnerability
It has been reported that Winamp may be prone to a denial of service vulnerability when processing files with a name exceeding 246 characters. Immediate consequences of this issue may result in the application crashing. Although unconfirmed, due to the nature of this vulnerability an attack could result in a buffer overflow condition and may lead to arbitrary code execution. Any code execution would occur in the context of the user running the application.
Winamp 5.02 was identified as the vulnerable version, however, it is possible that other versions are affected as well.
Conflicting reports have surfaced regarding this issue. It is possible that this issue may not be valid. This BID will be updated or retired as more information becomes available.
It has been reported that Winamp may be prone to a denial of service vulnerability when processing files with a name exceeding 246 characters. Immediate consequences of this issue may result in the application crashing. Although unconfirmed, due to the nature of this vulnerability an attack could result in a buffer overflow condition and may lead to arbitrary code execution. Any code execution would occur in the context of the user running the application.
Winamp 5.02 was identified as the vulnerable version, however, it is possible that other versions are affected as well.
Conflicting reports have surfaced regarding this issue. It is possible that this issue may not be valid. This BID will be updated or retired as more information becomes available.
Exploit / POC
NullSoft Winamp Long File Name Denial of Service Vulnerability
An exploit is not required to carry out the denial of service attack.
An exploit is not required to carry out the denial of service attack.
Solution / Fix
NullSoft Winamp Long File Name Denial of Service Vulnerability
Solution:
This issue has been addressed in Winamp 5.03.
NullSoft Winamp 5.0 2
Solution:
This issue has been addressed in Winamp 5.03.
NullSoft Winamp 5.0 2
-
Nullsoft Winamp 5.03
http://www.winamp.com/player/
References
NullSoft Winamp Long File Name Denial of Service Vulnerability
References:
References:
- Fixed Winamp 5 Bugs (NullSoft)
- Winamp Home Page (NullSoft)
- Re: Winamp 5.02 Long Filename Buffer Overflow Vulnerability (b0f www.b0f.net
- Winamp 5.02 Long Filename Buffer Overflow Vulnerability (Tobias Welter