LT   EN   RU  
Thursday 28 March 2024 Straipsniai.lt - Independent and informative portal
Home
Phorum
Contacts
Login
Register   Login
News subscribe
Subscribe   Unsubscribe
Partners
www.slaptai.lt www.gamezone.lt
www.penki.lt www.hakeriai.lt
   
   
Advertising
Statistic
Visits since 2002 09 12 - 70580962
Pages in Straipsniai.lt: 40735
  
  Computers > Computer technologies > Hackers
Lankomumo reitingas Print version Print version
Winamp Security Hole

Nullsoft has issued a fix for a newly discovered security vulnerability affecting Winamp 3.0, 5.0 and 5.0 Pro or newer.

The vulnerability takes advantage of the Winamp Skin installer mechanism coupled with a security hole within the Internet Explorer browser.

To be vulnerable, a user must navigate to a specifically crafted web page which automatically installs a malicious Winamp Skin.

This skin launches an embedded Internet Explorer browser within the Skin using a feature of the Winamp Modern Skin Engine. This malicious Winamp Skin then uses the browser to launch a malicious application bundled within the skin.

There have been reports of this exploit in use on the web to automatically install Adware or Spyware applications without the users consent.

Winamp 5.05 resolves this exploit in two ways:

Winamp will now prompt all users with a confirmation window before installing any skins.
Winamp will now only extract files considered low risk before loading a Winamp Skin.
We strongly urge ALL Winamp users to upgrade to Winamp 5.05 immediately.

Go to the Winamp Player download page to download the latest version of the Winamp:
http://www.winamp.com/player/free.php // (free version) // or
http://store.winamp.com/dr/v2/ec_MAIN.Entry17c?cid=107569&sp=10007&pn=21&sid=49545&pid=1241179

         
Lankomumo reitingas

Diskusijos - Discusions

Print version - Print version

Atgal
Random tags:    Hobby (25)    Style (3)    Communication (38)    Philately (8)    Fantasy (10)    Formula 1 (2)    Geology (4)    Ecology (10)    Photography (3)    Fencing (2)    Astronomy (11)    Programing (13)    Energetics (2)    Show-business (11)    Chess (10)    Cinema (20)    Internet (4)    Politics (13)    Soldiership (12)    Literature (24)    Motorcycles (33)    Health (20)    Dolphins (6)    Mother and child (17)    Egypt (43)    Badminton (3)    Scaners (10)    Buddhism (10)    Mobile communication (9)    PHP (3)    Blow-ups (2)    Hackers (59)    E - commerce (10)    Paintball (10)    SSL certificates (10)    Aquariums (28)    Yoga (4)    Dragons (13)    Mysticism (119)    Medicine (5)    Philosophy (2)    Music (10)    Kisses (13)    Travels (2)    Law (11)    Gymnastics (9)    Wedding (10)    Fishing (14)    Prose (11)    Hardware (43)
1. Bill Gates and other communists
2. Wi-Fi overtakes Ethernet for home networks
3. Worm plays games with victims
4. McAfee Launches SiteDigger 2.0 - program, which checks sites for their vulnerabilities
5. Troy-horses infects Windows Media files?
6. iWork productivity software targets Microsoft's Office
7. Taiwan police seize 60,000 suspect AMD CPUs
8. IDC: 3 future technologies
9. phpBB Attachment Mod: new vulnerabilities discovered
10. Windows XP SP2 Firewall shows your files and printers to every Internet user
1. Multiple vulnerabilities within PHP <= 4.3.9, PHP5 <= 5.0.2
2. Taiwan police seize 60,000 suspect AMD CPUs
3. Who says safe computing must remain a pipe dream?
4. Bill Gates and other communists
5. phpBB Attachment Mod: new vulnerabilities discovered
6. iWork productivity software targets Microsoft's Office
7. Feds try to take logs from Nmap creator
8. New hacking tool: chocolate
9. McAfee Launches SiteDigger 2.0 - program, which checks sites for their vulnerabilities
10. New Internet domains in the works
Map