Winamp - Buffer Overflow In IN_CDDA.dll [ Patch Released ]

From: Brett Moore (brett.moore_at_SECURITY-ASSESSMENT.COM)
Date: 12/06/04

  • Next message: Andrew Aronoff: "AppInit_DLLs revisited"
    Date:         Mon, 6 Dec 2004 13:30:18 +1300
    To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
    
    

    Quick update on the winamp issue.

    A new version 5.07 has been released and includes a fix for
    the buffer overflow in the IN_CDDA.dll module.

    Change Log
    http://www.winamp.com/player/version_history.php

    New Release
    http://www.winamp.com/player/

    Regards

    Brett Moore
    Network Intrusion Specialist, CTO
    Security-Assessment.com

    ######################################################################
    CONFIDENTIALITY NOTICE:

    This message and any attachment(s) are confidential and proprietary.
    They may also be privileged or otherwise protected from disclosure. If
    you are not the intended recipient, advise the sender and delete this
    message and any attachment from your system. If you are not the
    intended recipient, you are not authorised to use or copy this message
    or attachment or disclose the contents to any other person. Views
    expressed are not necessarily endorsed by Security-Assessment.com
    Limited. Please note that this communication does not designate an
    information system for the purposes of the New Zealand Electronic
    Transactions Act 2003.
    ######################################################################

    --
    Editor's Note: The 43rd Most Powerful Person in Networking says...
    Register today to take the TruSecure ICSA exam by 12/31/04  at
    <http://www.2test.com> ,  use promo code "CT1204" and you will pay just
    $221.25 US Dollars for domestic exam delivery and  $296.25 US Dollars
    for international delivery.
    Visit <https://ticsa.trusecure.com>  for complete details regarding the
    TICSA credential and to take the free sample exam.
    --
    

  • Next message: Andrew Aronoff: "AppInit_DLLs revisited"

    Relevant Pages

    • Re: To: BBFFB@CentralState.edu
      ... What do you mean you overslept and missed tour Vector Analysis unit ... You know this is the summer term and missing that exam means the ... (Hand him the bill) ... responsible for delivering it to the intended recipient, ...
      (rec.arts.disney.parks)
    • To: BBFFB@CentralState.edu
      ... What do you mean you overslept and missed tour Vector Analysis unit ... You know this is the summer term and missing that exam means the ... (Hand him the bill) ... responsible for delivering it to the intended recipient, ...
      (rec.arts.disney.parks)
    • Address Bar Spoophing for the Pheeshies: IntotheNet Explorer 6
      ... var malware = screen.availHeight; ... This is the hook: ... $221.25 US Dollars for domestic exam delivery and $296.25 US Dollars ...
      (NT-Bugtraq)
    • Sharepoint 2003 installation fails and account password revealed in setup log
      ... This application has requested the runtime to terminate it in an unusual way. ... Looking at this short log file reveals a line with the text: ... $221.25 US Dollars for domestic exam delivery and $296.25 US Dollars for international delivery. ...
      (NT-Bugtraq)
    • Re: possible regedit bulk key deletion vulnerability (Revised)
      ... Far easier for the malware to use the API that Microsoft thoughtfully ... $221.25 US Dollars for domestic exam delivery and $296.25 US Dollars ...
      (NT-Bugtraq)