Playlists could be WinAmp hack

By Robert Lemos
Staff Writer, CNET News

Playlist files for the WinAmp player could contain a new flaw, security firm Secunia said this week. The company advised people to remove the associations in the program for the ".cda" and ".m3u" extensions in order to avoid being bitten by the bug, which it rated as "highly critical"--the company's second highest rating.

The vulnerability is due to a memory problem with a certain function in the program that reads the music lists. The flaw occurs in version 5.05 and 5.06 of the program, the firm stated.

See more CNET content tagged:
Winamp, flaw, security

Add a Comment (Log in or register)

A fix is on the way...
by ivand67 November 25, 2004 9:56 AM PST: Nullsoft will be releasing a fix for this pretty soon , look for the update at www.winamp.com, (probably with a new version, 5.07)...; Reply to this comment

No, version 5.05 is OK
by November 27, 2004 7:33 PM PST: Article says version 5.05 vulnerable.
Winamp website says 5.00 the problem, fixed in version 5.05....; Reply to this comment

Latest tech news headlines

The royal family's Twitter feed: One is confused
Posted in Technically Incorrect by Chris Matyszczyk

July 11, 2009 12:13 PM PDT
Shuttle launch delayed to assess lightning strikes
Posted in The Space Shot by William Harwood

July 11, 2009 10:08 AM PDT
A high-quality image projector on your smartphone?
Posted in Geek Gestalt by Daniel Terdiman

July 11, 2009 6:00 AM PDT
See all headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets: Market news, charts, SEC filings, and more; Related quotes; Dow Jones Industrials (-0.45%) -36.65 8,146.52; S&P 500 (-0.40%) -3.55 879.13; NASDAQ (0.20%) 3.48 1,756.03; CNET TECH (0.36%) 4.57 1,262.65

Inside CNET News

Scroll Left Scroll Right

The Space Shot
Shuttle launch delayed to assess lightning strikes
Lightning strikes at launch pad 39A Friday forced NASA to delay the shuttle Endeavour's launch 24 hours, from Saturday to Sunday, to assess possible effects on critical systems.
Gallery
Photos: Top-rated reviews of the week
Technically Incorrect
The royal family's Twitter feed: One is confused
The British monarchy, a fairly tech-literate crowd, decides to embrace Twitter. However, though it claims not be to following anyone, evidence suggests the contrary.
Beyond Binary
Microsoft aims for Silverlight at end of the tunnel
The software maker concedes it has a long way to go to reach the ubiquity of Adobe's flash, but notes it has come a long way in a little less than two years.
Video
Video: iPhone 3G S launch in New York City
Digital Media
Report: MySpace to push deeper into entertainment
News Corp. has plans to turn MySpace into an entertainment portal. How much more entertainment can the site add?
Video
A recipe for high-tech chocolate
Geek Gestalt
A high-quality image projector on your smartphone?
The technology isn't here yet, but microdisplays from Micron may soon make it possible to use smartphones to project high-quality images anytime, anywhere.
The Space Shot
Weather threatens Saturday shuttle launch
A month late because of a now repaired hydrogen leak, NASA is preparing the shuttle Endeavour for launch Saturday on a 16-day space station assembly mission.
Gallery
Photos: A smartphone as a movie projector?
Crave
Insignia's NS-HD01 is the first portable HD Radio--and it's only $50
Best Buy iPod-sized HD Radio is priced to move.
Green Tech
Chasing the Toyota Prius' 50-mpg nirvana
CNET News' Martin LaMonica, an early buyer of the 2010 Toyota Prius, finds that the car gets good mileage but there's clearly more to learn.