Plain Text Password Vulnerability in Winamp 2.80

From: isoxat_private
Date: Sat May 18 2002 - 21:41:33 PDT

Next message: Dave Ahmad: "Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and prior (fwd)"

Previous message: Torbjorn Kristoffersen: "Re: ps under FreeBSD"
Next in thread: Muhammad Faisal Rauf Danka: "Re: Plain Text Password Vulnerability in Winamp 2.80"
Reply: Muhammad Faisal Rauf Danka: "Re: Plain Text Password Vulnerability in Winamp 2.80"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

When a URL's is streamed in winamp which requires HTTP authentication, the user is prompted to enter a username and password.  This username and password is then stored as plain text in the file winamp.ini under the section [HTTP-AUTH].  The format of stored passwords (it seems) is <domain - TLD>=<username>:<password>.
 
URL's which are streamed are also kept as history in the winamp.ini file under the [winamp] section.  This includes URL's which include the username/password in them (ie, http://username:password@site).
 
This was verified in Winamp 2.80 on Windows XP.
 
- isox

Next message: Dave Ahmad: "Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and prior (fwd)"
Previous message: Torbjorn Kristoffersen: "Re: ps under FreeBSD"
Next in thread: Muhammad Faisal Rauf Danka: "Re: Plain Text Password Vulnerability in Winamp 2.80"
Reply: Muhammad Faisal Rauf Danka: "Re: Plain Text Password Vulnerability in Winamp 2.80"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon May 20 2002 - 15:18:31 PDT