Test Kennung:	1.3.6.1.4.1.25623.1.0.62856
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: vlc-devel
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: vlc-devel CVE-2008-5276 Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5276 BugTraq ID: 32545 http://www.securityfocus.com/bid/32545 Bugtraq: 20081130 [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/498768/100/0/threaded http://security.gentoo.org/glsa/glsa-200812-24.xml http://www.trapkit.de/advisories/TKADV2008-013.txt http://www.osvdb.org/50333 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793 http://secunia.com/advisories/32942 http://secunia.com/advisories/33315 http://securityreason.com/securityalert/4680 http://www.vupen.com/english/advisories/2008/3287
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.