POP3: Winamp Skin File Attachment (WSZ/WAL)
This signature detects e-mail attachments with the extension ".wsz" or ".wal" sent through POP3. This can indicate an incoming e-mail virus. WinAmp Skin files can contain one or more executable scripts. Attackers can create malicious skin files, tricking the user into executing the file and infecting the system.
Extended Description
Remote attackers can exploit this vulnerability to execute arbitrary code with the privileges of the current user.
Short Name
POP3:EXT:DOT-WSZ-WAL
Severity
Minor
Recommended
False
Recommended Action
None
Category
POP3
Keywords
(WSZ/WAL) Attachment CVE-2004-0820 File Skin Winamp
Release Date
09/01/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
CVSS Score
4.6