Test Kennung:	1.3.6.1.4.1.25623.1.0.52446
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: mplayer, mplayer-gtk, mplayer-esound, mplayer-gtk-esound
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: mplayer, mplayer-gtk, mplayer-esound, mplayer-gtk-esound The installed version of MPlayer suffers from a buffer overflow in the HTTP handler that allows an attacker to execute arbitrary code if the attacker can arrange for you to visit a specially crafted URL. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0386 BugTraq ID: 10008 http://www.securityfocus.com/bid/10008 Bugtraq: 20040330 Heap overflow in MPlayer (Google Search) http://www.securityfocus.com/archive/1/359025 Bugtraq: 20040330 MPlayer Security Advisory #002 - HTTP parsing vulnerability (Google Search) http://marc.info/?l=bugtraq&m=108067020624076&w=2 CERT/CC vulnerability note: VU#723910 http://www.kb.cert.org/vuls/id/723910 http://security.gentoo.org/glsa/glsa-200403-13.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:026 http://secunia.com/advisories/11259 XForce ISS Database: mplayer-header-bo(15675) https://exchange.xforce.ibmcloud.com/vulnerabilities/15675
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.