Live: Amazon Event Wednesday Probe Crashes Into Asteroid Prime Day 2: Oct. 11-12 Tesla AI Day Hurricane Ian Satellite Images Save on iPad Pro Refurbs Apple Watch Ultra Review EarthLink Internet Review
Want CNET to notify you of price drops and the latest stories?
No, thank you
Accept

Winamp update fixes flaw

Version 5.2 includes patch for security hole that could be used to crash or even take over a vulnerable PC.

Less than a month after releasing a security update to Winamp, Nullsoft has delivered a new version of the media player to plug serious bugs. Winamp 5.2, issued Thursday, tackles a vulnerability in the software's handling of m3u playlist files, according to a developer posting on an online forum from Nullsoft, a division of America Online.

An attacker could put together a specially crafted m3u playlist to cause the computer to crash when the user pauses or stops play, according to an advisory from Secunia. It may also allow an intruder to execute code. The "highly critical" flaw affects the most recent versions of Winamp, versions 5.12 and 5.13, the security company said.