Could you elaborate on what problems the hackers actually cause. You mentioned that in another thread on Media Player.
Are other media players as vulnerable and do they get hacked?
Wiz... Winamp Questions
Moderator: Wiz Feinberg
-
Richard Sinkler
- Posts: 17828
- Joined: 15 Aug 1998 12:01 am
- Location: aka: Rusty Strings -- Missoula, Montana
- State/Province: Montana
- Country: United States
Wiz... Winamp Questions
Carter D10 8p/7k, Dekley S10 3p/4k C6 setup, Regal RD40 Dobro, Recording King Professional Dobro, NV400, NV112, Ibanez Gio guitar, Epiphone SG Special (open G slide and regular G tuning guitar) .
Playing for 55 years and still counting.
Playing for 55 years and still counting.
-
Wiz Feinberg
- Posts: 6114
- Joined: 8 Jan 1999 1:01 am
- Location: Mid-Michigan, USA
- State/Province: Michigan
- Country: United States
See this Secunia Security Advisory about the last Winamp Update, for the details about the vulnerability that was patched in December.
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
-
Richard Sinkler
- Posts: 17828
- Joined: 15 Aug 1998 12:01 am
- Location: aka: Rusty Strings -- Missoula, Montana
- State/Province: Montana
- Country: United States
Thanks Wiz... I hardly ever run across stuff like that, so it's nice to have guys like you and the others "gurus" here to keep us on the ball. Although I won't try to pretend I understand exactly what the report told me, it's nice to know.
What exactly does this mean? They can enter my 'puter and start my applications, or do they install some damaging program and then execute it? I'm pretty dumb when it comes to just how these security and virus problems happen.Successful exploitation allows execution of arbitrary code.
Carter D10 8p/7k, Dekley S10 3p/4k C6 setup, Regal RD40 Dobro, Recording King Professional Dobro, NV400, NV112, Ibanez Gio guitar, Epiphone SG Special (open G slide and regular G tuning guitar) .
Playing for 55 years and still counting.
Playing for 55 years and still counting.
-
Wiz Feinberg
- Posts: 6114
- Joined: 8 Jan 1999 1:01 am
- Location: Mid-Michigan, USA
- State/Province: Michigan
- Country: United States
"Successful exploitation allows execution of arbitrary code" means that the people running the exploit page that infects your PC, through Winamp or any other successfully exploited software, can download and install backdoors, rootkits, spam bots, attack tools, banking Trojans, keyloggers, spyware, adware, or fake AV programs at their will.
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
-
Richard Sinkler
- Posts: 17828
- Joined: 15 Aug 1998 12:01 am
- Location: aka: Rusty Strings -- Missoula, Montana
- State/Province: Montana
- Country: United States
Thanks. Doesn't sound good. I'm assuming the latest update stops this?
What about other players like Windows Media Player?
What about other players like Windows Media Player?
Carter D10 8p/7k, Dekley S10 3p/4k C6 setup, Regal RD40 Dobro, Recording King Professional Dobro, NV400, NV112, Ibanez Gio guitar, Epiphone SG Special (open G slide and regular G tuning guitar) .
Playing for 55 years and still counting.
Playing for 55 years and still counting.
-
Wiz Feinberg
- Posts: 6114
- Joined: 8 Jan 1999 1:01 am
- Location: Mid-Michigan, USA
- State/Province: Michigan
- Country: United States
Yes, Winamp was updated to plug that hole, on December 7, 2010. That's what Windows Updates are for. There have been a few recent exploits that targeted Windows Media Player, that were fixed by various Windows Updates. People who don't patch their computers are usually botnetted or otherwise infected with various and sundry types of malware.Richard Sinkler wrote:Thanks. Doesn't sound good. I'm assuming the latest update stops this?
What about other players like Windows Media Player?
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
-
Richard Sinkler
- Posts: 17828
- Joined: 15 Aug 1998 12:01 am
- Location: aka: Rusty Strings -- Missoula, Montana
- State/Province: Montana
- Country: United States
I take updates seriously and try to update when they are available. The Windows updates always cause some sort of problems, so I hesitate a few days when I get them. I think they put a timer in the updates, because if I don't install the update within a few days, it installs automatically without telling me. The only way I know it happens is when I get the dialog box telling me it updated and the computer is going to restart in about 15 minutes. And of course I am usually doing something important and have to save files and shut down. Big pain in my butt.
You can probably close this now. Thanks for the info.
You can probably close this now. Thanks for the info.
Carter D10 8p/7k, Dekley S10 3p/4k C6 setup, Regal RD40 Dobro, Recording King Professional Dobro, NV400, NV112, Ibanez Gio guitar, Epiphone SG Special (open G slide and regular G tuning guitar) .
Playing for 55 years and still counting.
Playing for 55 years and still counting.