Faulty Codec Puts Winamp and Media Player at Risk

Windows Security : Faulty Codec Puts Winamp and Media Player at Risk

Posted by Max on 2007/12/12 13:00:23 (1481 reads)

As recent researches have showed there seems to be an enlarged activity on ports directed to Windows Media Player and Winamp, a token that attackers are making efforts to screen machines for a new codec vulnerability.

The security firm Secunia, pointed out the weak features that make the players vulnerable – they are to be found in 3ivx Technologies' MPEG-4 codec, a necessary compatibility application used to create and play back MP4 files.

According to SCMagazineUS.com, Ben Greenbaum, senior research manager in Symantec Security Response Experts confirmed that this vulnerability extends from all older versions of the popular multimedia programs (Windows Media Player 6.4, Media Player Classic 6.4.9 and Winamp 5.32) to newer ones.

The same expert stated that attackers are choosing to exploit bugs in media players and the plugins that augment their functionality as organizations and vendors improve the security of their operating systems and programs.

Greenbaum emphasized that the exploit is conducted through trusted websites which are used by attackers who benefit from the fact they are allowed to slot in their own content. The method proves to be quite efficient for attackers who can this way get their exploit up to a site that is well rated.

He also mentioned that what attackers are after is dropping a secondary payload, such as a bot or trojan. Secondarily, Greenbaum suggested that businesses should make sure they dispose of such a policy that gives employees permission to connect to media players only if their work requires them to do so.

According to the same source, SCMagazineUS.com, a spokesman for AOL, Kurt Patat recommended that people should upgrade to version 5.5 in order to avoid any problem caused by the aforementioned vulnerability.

In turn Mark Miller, director of security response for Microsoft, made the same suggestion to Windows Media Player users.

Previous article - Next article

Other articles
2009/11/3 14:55:39 - BitDefender Top Ten Malware Threats for October 09
2009/11/3 14:29:38 - Nov. 09 Microsoft Security Intelligence Report
2009/10/7 15:19:17 - StopSign AntiVirus and Anti-Malware is Windows 7 Compatible
2009/10/7 15:11:26 - New Outlook Backup and Migration Software By Disk Doctors
2009/9/30 4:20:57 - Microsoft Security Essentials, FREE Security Tool Just Released
2009/9/28 14:31:52 - New Rogue Antispyware Cloaked To Infects Computers
2009/9/9 4:31:49 - Trend Micro Proves Leadership in URL Filtering and Web Security
2009/9/9 4:16:20 - New Free Tool to Clean Conficker Once and For All
2009/9/1 8:37:11 - Kaspersky Internet Security 2010 and Kaspersky Anti-Virus 2010 Out Now
2009/9/1 7:54:50 - NEW P2P Advertising Network Protects Users Against Lawsuits And Identity Theft

The comments are owned by the poster. We aren't responsible for their content.

Poster	Thread
anissa73	Posted: 2009/2/14 16:37 Updated: 2009/2/14 16:37
Just popping in Joined: 2009/2/14 From: Posts: 5	Re: Faulty Codec Puts Winamp and Media Player at Risk Hello. Check my website with quality informations: www.youtube.com, craigslist