Oddsock Gen Song Request Plugin (Security Risk)
I noticed a post on the Winamp forums where someone was asking for a song request plugin for the program.
Another user suggested they should use the Oddsock Gen Song Request Plugin.
While the Oddsock Gen Song Request Plugin was great for interacting with listeners years ago.
Things have moved on somewhat especially in the world of Internet radio request scripts for websites.
“The Oddsock Gen Song Request Plugin is full of “Security holes” which in turn means the person using it could easily have their copy of Winamp hacked or worse their computer”
</p> <p>######## Start report ########<br /> Outpost24 Advisory</p> <p>www.outpost24.com</p> <p>Advisory Name: Oddsock Playlist Generator Multiple<br /> BufferOverlow vulnerability<br /> Release date: 15/07-02<br /> Software : Song Requester Version : 2.1<br /> Platform: Windows NT/XP/95/98/2000<br /> Severity: DoS Vulnerability, that terminates Winamp,<br /> and restart</p> <p>Author: Lucas Lundgren (firstname.lastname@example.org)<br /> Reference: http://www.outpost24.com/news/<br /> Vedor Status: No response</p> <p>Summary:</p> <p>Oddsock Playlist generator is used by Radio DJs to<br /> allow listeners to choose a song to play from the<br /> Winamp Playlist.Song Requester Version<br /> 2.1 contains multiple buffer overflows, which will<br /> result in a DoS attack against the Winamp/Shoutcast<br /> service. The DJ will have to restart Winamp in order to<br /> make it work again. </p> <p>There are two major kinds of DoS attacks against this<br /> software: the first will display an error message, and<br /> inform the user that a logfile has been created. The<br /> second attack closes down Winamp and restores the<br /> playlist from the previous state, so that any newly<br /> added songs will not be displayed in the playlist.It<br /> also restores the admin password to what<br /> is was previously, if it has been changed without<br /> restarting Winamp.</p> <p>Technical Details:</p> <p>By parsing long names or characters to the CGI files in<br /> the Song Requester, a DoS is avalible, closing down<br /> Winamp and / or leaving a error log. You could try to<br /> parse</p> <p>http://<musicserver>/request.cgi?listpos=9999999999999999999999999999<br /> (9x256)</p> <p>This will cause Winamp to crash, and makes Dr Watson<br /> dump a logfile.</p> <p>But if you parse:<br /> http://<musicserver>/request.cgi?psearch=999999999999999999999999999999<br /> (9x254) </p> <p>Winamp will die without any error messages.</p> <p>Oddsock overflows the playlist and crashes the Winamp<br /> player. If you want to check it out, please look at Dr<br /> Watson logs for more details. All the CGI files in<br /> Song Requester are vulnerable to DoS attacks, even<br /> the 'admin.cgi'. Please note that the password you type<br /> in is in clear text; no asterix signs replace the<br /> characters.</p> <p>Outpost24<br /> Contact: Lucas Lundgren (email@example.com)<br /> ######## End report ########<br />
If you really need to have a song request page on your website then you should look no further than RadioDJ free radio automation software.
The (PHP) request script allow users to request songs from your website. These scripts aren’t that difficult to incorporate into your website if you take your time and learn how to.
You just need a web host that allows port 3306 access so the web scripts can talk to the MySQL database on your PC.
It’s gotta be better that than leaving your PC at the mercy of being hacked? As long as you choose a strong password for your SQL server when you set it up you shouldn’t have any issues with being hacked.
A Dutch Winamp fan site is still recommending the Oddsock song request plugin to anyone who visits their site.
They’ve obviously never heard about the security issues with the scripts…
If you do decide to use the Oddsock song request plugin then GOOD LUCK! You’ll only regret it when someone hacks the scripts and manages to crash Winamp!
Don’t say you weren’t warned!!
Last updated on: 17th August 2018
at 13:19 PM Europe/London