Network News

X My Profile
View More Activity

New Winamp Version Fixes Major Security Hole

AOL's Nullsoft division released a new version of its popular Winamp music and video player on Thursday, in part to fix a "major" security flaw in the program, according to the accompanying advisory.

Winamp 5.22 includes a huge list of stability updates and at least a couple of security tweaks, though the advisory doesn't get too far into specifics on the latter front.

We have seen active exploitation of Winamp flaws in the past (heck, the Metasploit Project -- a free, open-source software suite that fully automates the exploitation of various known software security flaws -- includes exploit code for Winamp holes), so please do not put off downloading and installing this new version if you use Winamp.

Update, 10:24 a.m. ET: False alarm (thanks for the tip Stuart). I was tricked by those wily Nullsoft engineers, who apparently in their zeal to begin the long holiday weekend forgot to update their Web page. Alas, despite the "Major Exploit Fixed" notice above the download link to the new version there are in fact no security fixes included in this update. Still, there are a bunch of stability improvements, and a few new features in Winamp 5.22, so updating may prove worthwhile after all.

By Brian Krebs  |  May 26, 2006; 7:32 AM ET
Categories:  New Patches  
Save & Share:  Send E-mail   Facebook   Twitter   Digg   Yahoo Buzz   Del.icio.us   StumbleUpon   Technorati   Google Buzz   Previous: Mozilla to End Support for Older (1.0.x) Firefox Versions
Next: Fun With Java Updates

No comments have been posted to this entry.

The comments to this entry are closed.

 
 
RSS Feed
Subscribe to The Post

© 2010 The Washington Post Company