Shortly after version 5.13, here comes 5.2. Version 5.2 fixes some bugs found after the release of 5.13, which was released when vulnerabilities allowing code execution were discovered in 5.12.
After 5.13 was released, a number of other buffer overflows was discovered. However, of the three different exploits I’ve seen, none of them seem to be exploitable with the attacker gaining control of the program.
When testing the exploits/vulns, all I saw where different buffers being overflowed, but no way to gain control of the program (which is one reason why you didn’t see any blog entries from me about those vulnerabilities).
Well, that’s what I saw in my tests. Mostly just a DOS attack.
Anyway, if you have WinAmp, do update to the latest version.
