Intrusion Prevention

Nullsoft.Winamp.Malformed.ID3v2.Tag.Code.Execution

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Nullsoft Winamp.
The vulnerability is caused by an error in the software when handling malformed "mp3" files. It may allow remote attackers to execute arbitrary code by sending a crafted "mp3" file.

Affected Products

Winamp versions 5.03a, 5.09, and 5.091

Impact

System Compromise.

Recommended Actions

Upgrade to the latest version, available from the Web site:
http://www.winamp.com/player/

CVE References

CVE-2005-2310