Slashdot Mirror

← Back to Stories (view on slashdot.org)

Winamp Skin Exploit in the Wild

Posted by ryuzaki0 on from the even-skins-are-dangerous-now dept.

An anonymous reader writes "Secunia.com has announced an exploit (derived from xml escaping the Internet zone into IE's local zone) that exploits Winamp's habit of automatically installing skins. Currently all versions of Winamp are affected. Details on the Winamp forums - apparently an exploit is already in the wild, and spreading."

7 of 397 comments (clear)

  1. Macs by AKAImBatman · · Score: 0, Flamebait

    Makes me glad I use iTunes on a Mac. At least Apple doesn't decide *for me* that I NEED an insecure web browser in EVERY APPLICATION on the operating system.

    The fact that OS X has not yet had one critical exploit speaks for itself. (And yes, OS 7-8 *did* have quite a few exploits and viruses.)

    --
    Javascript + Nintendo DSi = DSiCade
    1. Re:Macs by black+mariah · · Score: 0, Flamebait

      The Winamp programmers made a choice to use the IE shit, moron. If you're going to flame, at least be somewhat intelligent about it.

      --
      'Standards' in computing only impress those who are impressed by things like 'standards'.
  2. Skin(ny) dipping? by davidsyes · · Score: 0, Flamebait

    If WinAmp doesn't release or realize a worthy fix, they could be dipping their skin in an arcing, amping, electric fryer if the exploits get out of control.

    (Hmm, fixes, amping, arcing...)

    --
    Previously: "Linux... Toward the Sunrise..." Now: "Linux... Toward the-- No, now, part of Every Sunrise"
  3. Winamp 2.xx..... by darth_silliarse · · Score: 0, Flamebait

    ...is not affected and us sensible users browse with Mozilla/Opera/NotIE as the default so whats the big deal? Who the fuck uses the crappy bloated recourse hog that is 5.x anyway.... ah Internet Explorer users. Bless their cotton socks.... MORE TOOLBARS AND GATOR APPZ AND SKINZ PLEEZE. Makes life worth living watching an Internet Explorer user suffer!

    --
    I've noticed that everyone who is for abortion has already been born - Ronald Reagan
  4. Re:use firefox by strictfoo · · Score: 0, Flamebait
    that was the ugliest attempt at trying to create a link in the history of mankind. It was horrible on two levels.

    1. You don't know how to create a link using either the slashdot
    <URL:>
    tag or a standard anchor tag.

    2. The link you posted redirects to a specific file, so why not just link to that? http://ftp.mozilla.org/pub/mozilla.org/firefox/rel eases/0.9.3/FirefoxSetup-0.9.3.exe
    --
    I've just signed legislation that'll outlaw Russia forever. We'll begin bombing in five minutes.
  5. Re:Mozilla by Enrico+Pulatzo · · Score: 1, Flamebait

    Reinventing the wheel for every project is a form of laziness too--you're too damn lazy to learn about existing APIs. Tools exist for a purpose, and people too lazy/prejudiced/"good" to use them should shut up, imho ;)

  6. iTunes you bastard! by revscat · · Score: 0, Flamebait
    No! Thou shalt worship no other gods but iTunes! All other MP3 players shall be banished to the topmost rung of RedMound for your heresy! BACK! BACK, I SAY!

    Cthulhu n'garn N'gah K'thuun pinkybrain!