aprentice
Moderator
Someone in the emu64 channel brought this to my attention:
http://212.100.234.54/content/6/28842.html
http://212.100.234.54/content/6/28842.html
Can this be real?
- Thread starter aprentice
- Start date
Vchat20
New member
WTF?!?! This is ridiculous!!! Giving ppl viruses and worms just because they are pirating music. why dont they just give up and accept the fact that they cant stop it. Besides, even with the past PC CD player protection on cd's, it was still possible to copy those cd's. Just play in a normal cd player, and run a patch cable from the stereo to the PC and record that way. isnt the most user-friendly, but it got past the block. Still, why dont they accept the fact that they cant stop it? all they are doing is delaying the inevitable. every time they try and stop us, we keep coming back with ways to get past their blocks. Anyway's, I just think this is total BS giving ppl viruses just because they pirate cd's.
AlphaWolf
I prey, not pray.
I can think of numerous criminal laws that prohibit this activity, on top of violating every trojan'ed persons 4th ammendment right. If this is true, they already face fines up the ass, as well as a huge class action lawsuit.
Whether or not its true should be known within the next day or so, I anticipate the RIAA to respond as a press release.
Whether or not its true should be known within the next day or so, I anticipate the RIAA to respond as a press release.
L
Lachp30
Guest
aprentice said:
That is very crap if that is true...
AlphaWolf
I prey, not pray.
Colonel Mustard
Serial Killer
Surely this would not be possible anyway?
Is it not true that viruses can only do any damage if they are executed on your computer, therefore can only be in .exe, .com and possibly .zip files?
Surely playing a so called "infected" mp3 on your mp3 player would not make a jot of difference
Is it not true that viruses can only do any damage if they are executed on your computer, therefore can only be in .exe, .com and possibly .zip files?
Surely playing a so called "infected" mp3 on your mp3 player would not make a jot of difference
CpU MasteR
omg h4x
Colonel Mustard said:Surely playing a so called "infected" mp3 on your mp3 player would not make a jot of difference
I wonder if this is their So called, "Virus"
Even if it is a Hoax, I am ROFLing :happy:
Here is the News Story from Winamp....
<!-- ** Begin DropUser Droplet ** -->
<div class="fontsize14pt bold">Security Fixes For Winamp: Get The Latest And Be Protected </div>
<div class="fontsize9pt">By <a href="mailto:[email protected]">Jonathan Ward</a></div>
<div class="fontsize9pt highlight">Published December 19, 2002 @ 04:42 PM</div><br>
Some people just have too much time on their hands. Looks like someone out there discovered how to make programs crash by screwing around with the id3 tags in music files. We have taken measures to block anyone from taking advantage of you by adding a few security fixes to both Winamp 2.81 and Winamp3.<p>
We would like to say that these builds have new features but in actuality they are the same versions of the programs that you already know and love. However, to be fully protected, we suggest that you download the latest versions of them from our site right away. <p>
If you haven't downloaded Winamp since 12-17-2002 then you are vulnerable to the security exploit. <p>
Go grab the new builds of <a href="http://www.winamp.com/download/">Winamp3</a> and <a href="http://classic.winamp.com/download/">Winamp 2.81</a> now. <p>
Thanks and have a happy/safe holiday season,<p>
The Winamp Team
<p>
<!-- ** End DropUser Droplet ** -->
BTM
Polish Emu Scene Member
Josep said:yea, other sources work quite well, good thing they'll only be using p2p servers to 'infect' mp3's! hahaha
person A downloads a MP3 via P2P
person B download the MP3 from person A
person B gives his MP3 to person C
and so we have a MP3 with virus without using P2P
and then person C puts up a FTP server, or share it on a HTTP site and you can just imagin the rest :]
AlphaWolf
I prey, not pray.
Colonel Mustard said:Surely this would not be possible anyway?
Is it not true that viruses can only do any damage if they are executed on your computer, therefore can only be in .exe, .com and possibly .zip files?
Surely playing a so called "infected" mp3 on your mp3 player would not make a jot of difference
You'd think so, but no. Practicaly any file can be infected with a virus. They are infected by taking advantage of unchecked buffers in whatever software that might play them. This basicaly causes that software to crash, but before it crashes, it runs whatever was stored in that buffer as code.
Software that actively listens to incoming connections from the net can be targeted in the same manner by anybody at any time. (hence why windows XP is considered such a security hole, namely the UPNP port 5000 is impossible to close without a firewall/nat router, and has several potential buffer overflow exploit spots).
CpU MasteR said:
Well, id3 tags aren't the only possible place for a buffer overflow
So winamp hasn't necessarily fixed the problem entirely yet, and frankly, they probably never will. However, a buffer overflow will crash the mp3 player as you are playing it, if not as you open it. This makes me believe that somebody would likely delete that particular mp3 file and download a different one since it doesn't play back fully in their player without crashing. So realy it would probably be very hard to get the 95% that they are claiming.But, just remember that though, if any media file you have always crashes a player at a specific point of playback, consider it to be suspicious, because that is what a buffer overflow will do to run malicious code.
Last edited: