Download Winamp 5.34a
There is a patch in the form of 5.34a on the Winamp forum appeared for the 5.34 release that appeared last week. The patch can here downloaded and extracts a buffer overflow from in_mp4.dll, the plugin that allows mpeg4 files to be played in Winamp. Winamp could only play music files in its early years. At the time, it was one of the most well-known programs that could play MP3s in a decent way. Now, several years later, the programmers are developing the Winamp 5 series. The 5 branch is characterized by the plugin support of 2.x and the skin engine of 3.x. At the moment Winamp is a full media player: not only can music files be played, but it is also possible to watch movies and listen to various radio streams. On Secunia you can being read which leak the security update closes exactly:
Marsu has reported a vulnerability in Winamp, which can be exploited by malicious people to compromise a user’s system.
The vulnerability is caused due to an error within the handling of MP4 files and can be exploited to cause memory corruption via a specially crafted MP4 file.
Successful exploitation allows execution of arbitrary code.
The vulnerability has been reported in version 5.34. Other versions may also be affected.
Version number | 5.34a |
Operating systems | Windows 9x, Windows NT, Windows 2000, Windows XP, Windows Server 2003, Windows Vista |
Website | winamp forums |
Download | |
License type | Freeware |