Winamp is a media player for Windows.
A buffer overflow vulnerability in the
**in_mp3.dll** library when parsing Ultravox streaming metadata allows command execution when a user opens a stream containing a long, specially crafted
**<artist>** tag value.
Upgrade to Winamp 5.52 or higher.
Exploit works on Winamp 5.21 and requires a user to open the exploit stream in Winamp.