Slashdot Mirror

← Back to Stories (view on slashdot.org)

Spyware Tunnels in on Winamp Flaw

Posted by Hemos on from the hey-now-get-your-upgrade-on dept.

Andy Philips writes "A security bug in Winamp is being exploited by miscreants to install spyware on machines running the media player software. "After surfing to a malicious Web site on our test machines, the file 'x.pls' begins to download, Almost immediately, Winamp starts to execute the play list and remote code execution begins." Sunbelt's Adam Thomas wrote in a posting. The Winamp problem affects version 5.12 of the media player. Earlier versions may also be affected."

4 of 176 comments (clear)

  1. Oh by kvant · · Score: 5, Funny

    I was wondering why my mp3-collection was suddenly trying to sell me penis-lengthening pills!

    1. Re:Oh by Belseth · · Score: 2, Funny
      I was wondering why my mp3-collection was suddenly trying to sell me penis-lengthening pills!

      Wait'll the next version comes out. They'll be collecting credit card numbers and automatically billing your account so you won't even have to order the enlarging pills they'll simply show up in your mailbox along with the bank notice that your account is empty.

  2. So now it... by Robotech_Master · · Score: 5, Funny

    ...whips your computer's ass, as well as the llama's.

    --
    Editor Emeritus and Senior Writer, TeleRead.org
  3. Re:It's that Damn Llama's Fault by Anonymous Coward · · Score: 2, Funny

    Once upon a time, I used Winamp.

    Until there was a story on slashdot about spyware being installed via Winamp flaw. Someone posted to slashdot about the experiences they had with winamp, and suggested something called Quintessential Player. I love this person, because thanks to them, I just found a great replacement for winamp.