New Winamp Version Fixes Major Security Hole
AOL's Nullsoft division released a new version of its popular Winamp music and video player on Thursday, in part to fix a "major" security flaw in the program, according to the accompanying advisory.
We have seen active exploitation of Winamp flaws in the past (heck, the Metasploit Project -- a free, open-source software suite that fully automates the exploitation of various known software security flaws -- includes exploit code for Winamp holes), so please do not put off downloading and installing this new version if you use Winamp.
Update, 10:24 a.m. ET: False alarm (thanks for the tip Stuart). I was tricked by those wily Nullsoft engineers, who apparently in their zeal to begin the long holiday weekend forgot to update their Web page. Alas, despite the "Major Exploit Fixed" notice above the download link to the new version there are in fact no security fixes included in this update. Still, there are a bunch of stability improvements, and a few new features in Winamp 5.22, so updating may prove worthwhile after all.
May 26, 2006; 7:32 AM ET
Categories: New Patches
Save & Share: Previous: Mozilla to End Support for Older (1.0.x) Firefox Versions
Next: Fun With Java Updates
The comments to this entry are closed.