Nullsoft Releases New Version of Winamp to Address Serious Security Flaw
Nullsoft has recently launched a new version of its multimedia application, Winamp, while also addressing a critical security vulnerability.
Winamp 5.2, released last Thursday, contains a serious security flaw in its handling of M3U playlist files. Hackers could exploit this vulnerability to create a buffer overflow within the application or to generate malicious .m3u files capable of executing themselves to attack users.
According to Secunia, when users open these malicious M3U files, their systems may become paralyzed if they stop or pause playback of the playlist, or it may allow hackers to execute code remotely.
This security flaw primarily affects recent versions of Winamp, such as versions 5.12 and 5.13. However, Secunia has indicated that older versions may also be vulnerable to this security issue.
Secunia classifies this security vulnerability as extremely dangerous and advises users to upgrade to the latest version as soon as possible.
