[28285] in bugtraq
Re: Foundstone Research Labs Advisory - Multiple Exploitable Buff er Overflows in Winamp (fwd)
daemon@ATHENA.MIT.EDU (Mischa Krilov)
Fri Dec 20 22:18:16 2002
Content-Type: text/plain;
charset="iso-8859-1"
From: Mischa Krilov <mischa@irev2.com>
Reply-To: mischa@irev2.com
To: bugtraq@securityfocus.com
Date: Fri, 20 Dec 2002 11:10:46 -0600
In-Reply-To: <8628ADFB314FD5119C390008C7E9638E02170681@MESSENGER>
MIME-Version: 1.0
Message-Id: <200212201110.46191.mischa@irev2.com>
Content-Transfer-Encoding: 8bit
On Thursday 19 December 2002 07:17 pm, Shutters, Mike wrote:
> I went ahead and installed the latest 2.81, even though it was dated as
> you said. After the install I found a file in the Plugins directory
> named IN_MP3.DLL, which is 132K in size and dated December 16, 2002,
> 1:55 PM. Perhaps this is the file which created the fix. Unfortunately,
> I didn't check the directory contents prior to updating from 2.80.
In my install of WinAmp 2.80, the in_mp3.dll file (found in \program
files\winamp\plugins) is 188,928 bytes and is dated 24 April 2002,
3:56:22pm.
Hope this helps.
Mischa.
