|
|
|
|
|
|
|
Winamp Security Hole
Nullsoft has issued a fix for a newly discovered security vulnerability affecting Winamp 3.0, 5.0 and 5.0 Pro or newer. The vulnerability takes advantage of the Winamp Skin installer mechanism coupled with a security hole within the Internet Explorer browser. To be vulnerable, a user must navigate to a specifically crafted web page which automatically installs a malicious Winamp Skin. This skin launches an embedded Internet Explorer browser within the Skin using a feature of the Winamp Modern Skin Engine.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|