Beware That Winamp Skin! - WinPlanet Windows Software Reviews

You are in the: Small Business Computing Channel

ť ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet |Refer-It

Power Search | Tips

In-Depth Reviews

Tips & Tutorials

Browsers

Chat / Conferencing

Desktop Utilities

Development

Internet Apps

Multimedia

OS Service Packs

Productivity Tools

Enter a keyword

Newsletters offering Windows news, articles, tips and reviews.

Partners & Affiliates

Small Business Computing

Ecommerce Guide

Webopedia

WinPlanet

WinPlanet / News

Download of the day

• Norton AntiVirus 2008

Most Popular Software Downloads

• Ad-Aware 2008 Free

• Windows XP Service Pack 3

• Internet Explorer 7

• QuickTime for Windows

• Adobe Flash Player

• AVG Anti-Virus Free

• Paint Shop Pro

• Windows Live Suite

• CCleaner (Crap Cleaner)

• Winamp

Most Popular Software Articles

• Windows Vista Tips & Tricks, Part 1

• Windows Vista: Worthy of the Hype?

• Windows Wireless Zero Configuration: Five Steps to Sanity

Software Reviews

Beware That Winamp Skin!
Zero-Day Exploits Targets Winamp's Skinning Feature
Ryan Naraine

The popular skinning feature in Nullsoft's Winamp media player has left the door wide open for malicious attackers to hijack PCs.

Security researchers at K-Otik discovered the vulnerability and released details of a "Skinhead" zero-day exploit that is already spreading in the wild. The exploit, which targets Winamp versions 3.x and 5.x, is being used to forcefully install spyware (define) and Trojans on infected systems.

Secunia has tagged the flaw as "extremely critical," its highest rating.

Winamp skins have a huge following because they allow users to adopt colorful, customizable, and interchangeable sets of graphics that change the look and feel of the software.

According to an advisory from Secunia, the problem is caused due to insufficient restrictions on Winamp skin zip files (.wsz). It means a malicious Web site could use a specially crafted Winamp skin to place and execute arbitrary programs.

With Microsoft's Internet Explorer browser, this can be done without user interaction.

Analysis of the zero-day exploit shows that attackers are using an XML (define) document in the Winamp skin zip file to reference a HTML document using the "browser" tag and get it to run in the "Local Computer Zone."

"This can be exploited to run an executable program embedded in the Winamp skin file using the 'object' tag and the 'codebase' attribute," Secunia explained.

The vulnerability has been confirmed on a fully patched system with Winamp 5.04 using Internet Explorer 6.0 on Microsoft Windows XP SP1.

PivX Labs, which has also analyzed the attack vector, said that a user visiting a Web site that hosts the Skinhead exploit will have their browser redirected to a compressed Winamp Skin file which has a WSZ file extension, but which in reality is a ZIP file.

The company said the default installation of Winamp registers the WSZ file extension and includes an instruction to Windows and Internet Explorer to automatically open the files. It leads to the fake Winamp skin being automatically loaded into the media player.

America Online owns Nullsoft.

News courtesy of internetnews.com

August 26, 2004

Download Winamp Now!

Download Windows XP SP2 Now!

View All MP3 Players

View All Anti-Spyware Utilities

Contents:
1. Zero-Day Exploits Targets Winamp's Skinning Feature

Additional Articles:

Nullsoft WinAmp 1.92

Nullsoft Winamp 2.23

Nullsoft Winamp 2.50c

Winamp Skin Flaw Patched

Winamp Has a Bug

Search:

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info

Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy.

Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Whitepapers and eBooks
Microsoft Article: Will Hyper-V Make VMware This Decade's Netscape? Microsoft Article: 7.0, Microsoft's Lucky Version? Microsoft Article: Hyper-V--The Killer Feature in Windows Server 2008 Avaya Article: How to Feed Data into the Avaya Event Processor Microsoft Article: Install What You Need with Windows Server 2008 HP eBook: Putting the Green into IT Whitepaper: HP Integrated Citrix XenServer for HP ProLiant Servers Intel Go Parallel Portal: Interview with C++ Guru Herb Sutter, Part 1		Intel Go Parallel Portal: Interview with C++ Guru Herb Sutter, Part 2--The Future of Concurrency Avaya Article: Setting Up a SIP A/S Development Environment IBM Article: How Cool Is Your Data Center? Microsoft Article: Managing Virtual Machines with Microsoft System Center HP eBook: Storage Networking , Part 1 Microsoft Article: Solving Data Center Complexity with Microsoft System Center Configuration Manager 2007 MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts
Intel Video: Are Multi-core Processors Here to Stay? On-Demand Webcast: Five Virtualization Trends to Watch HP Video: Page Cost Calculator Intel Video: APIs for Parallel Programming		HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind Microsoft Silverlight Video: Creating Fading Controls with Expression Design and Expression Blend 2 MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits
Sun Download: Solaris 8 Migration Assistant Sybase Download: SQL Anywhere Developer Edition Red Gate Download: SQL Backup Pro and free DBA Best Practices eBook		Red Gate Download: SQL Compare Pro 6 Iron Speed Designer Application Generator MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos
How-to-Article: Preparing for Hyper-Threading Technology and Dual Core Technology eTouch PDF: Conquering the Tyranny of E-Mail and Word Processors IBM Article: Collaborating in the High-Performance Workplace HP Demo: StorageWorks EVA4400		Intel Featured Algorhythm: Intel Threading Building Blocks--The Pipeline Class Microsoft How-to Article: Get Going with Silverlight and Windows Live MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES