Sonicwall Keeps Users Secure From Winamp Remote Code Execution Exploit
Vulnerability prevention team keeps customers safe from extremely critical vulnerability
SUNNYVALE, CALIF. January 30, 2006 Within hours of the identification of a flaw in version 5.12 of Nullsofts Winamp media player, SonicWALL, Inc. (NASDAQ: SNWL) issued signatures, which actively protect users of its Internet threat prevention technology from the vulnerability. Defined as extremely critical, the flaw could lead to unauthorized hackers taking control of a user's system.
SonicWALLs SonicALERT team first detected signs of the Winamp vulnerability during the morning of January 30 and within hours, wrote, tested and launched a response across all SonicWALL security appliances worldwide using the companys dynamic protection capabilities.
The current version of Winamp contains an error in its playlist parsing allowing malicious users to execute code via a prepared playlist. This bug can even be triggered through a website - without user interaction - by linking to a PLS file in an IFRAME tag. This triggers a buffer overflow, which if successful, would allow the malicious software to surreptitiously install spyware on a user's PC or allow a hacker to control the machine remotely.
SonicWALL, named the leader in Unified Threat Management (UTM) security appliances worldwide for the third consecutive quarter, according to IDCs Worldwide Q3 Security Appliance Tracker1, delivers zero day gateway anti-virus and intrusion prevention signatures to its subscribers on a continual basis, to defend against new and existing Internet attacks and exploit.
Further information on EXPLOIT Nullsoft Winamp Player PLS File Handling Remote Buffer Overflow Attack is available at http://software.sonicwall.com/applications/ips/index.asp?ev=sig&sigid=3112
About SonicWALL, Inc.
Founded in 1991, SonicWALL, Inc. designs, develops and manufactures comprehensive network security, secure remote access, and continuous data protection solutions. Offering both appliance-based products as well as value-added subscription services, SonicWALLs comprehensive solutions enable organizations to secure deep protection without compromising network performance. SonicWALL is a recognized global leader in the small and medium business markets and its solutions are deployed in distributed enterprise environments, government, retail point-of-sale and healthcare segments as well as through service providers. SonicWALL, Inc. is headquartered in Sunnyvale, CA and trades on the NASDAQ exchange under the symbol SNWL. For more information, contact SonicWALL at +1 (408) 745-9600 or visit the company web site at http://www.sonicwall.com/.
Source: SonicWALL
[ Comment, Edit or Article Submission ]
