Skip to main content

Notice

Please note that most of the software linked on this forum is likely to be safe to use. If you are unsure, feel free to ask in the relevant topics, or send a private message to an administrator or moderator. To help curb the problems of false positives, or in the event that you do find actual malware, you can contribute through the article linked here.
Topic: Winamp Security Exploit Advisory (Read 2900 times) previous topic - next topic
0 Members and 1 Guest are viewing this topic.

Winamp Security Exploit Advisory

The news from Winamp site here (moderate risk  )

confirmed by NGSSoftware here (high risk  )
Rommel

Winamp Security Exploit Advisory

Reply #1
Hmmm... in_mod... wasn't that maintained by X-Fixer at some point?

Winamp Security Exploit Advisory

Reply #2
my site, Winamp Unlimited has a more complete set of information (more links, explanation), if you want to check it out.

all winamp 2.91-5.02 users are advised to upgrade to 5.03, which fixes this exploit.
winamp unlimited.com

Winamp Security Exploit Advisory

Reply #3
I think it's a trick everybody to use only the newest winamp that costs money.

Winamp Security Exploit Advisory

Reply #4
Isn't it easier to just replace in_mod instead the whole winamp? 

Winamp Security Exploit Advisory

Reply #5
@ Fincoder
Winamp 5.03 does not require any sort of payment to use, unless you want unlimited speeds for ripping/burning.

@Mark7
Here are directions to patch your Winamp, if you can't download/upgrade to the 5.03:

1. Right click the Winamp player, go to 'Options' and then to
'Preferences...'.
2. In the new window which loads, go to 'Plug-ins' and 'Input'.
3. Look for the input plug-in items 'Nullsoft Module Decoder' and double
click it to bring up the 'Nullsoft Module Decoder Preferences' window.
4. Select the 'Fasttracker 2' loader and deselect the 'Enabled' checkbox to
the right of the loaders list.
5. Close all of the option windows and return to the main player.
winamp unlimited.com