ID de Prueba:	1.3.6.1.4.1.25623.1.0.52446
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: mplayer, mplayer-gtk, mplayer-esound, mplayer-gtk-esound
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: mplayer, mplayer-gtk, mplayer-esound, mplayer-gtk-esound The installed version of MPlayer suffers from a buffer overflow in the HTTP handler that allows an attacker to execute arbitrary code if the attacker can arrange for you to visit a specially crafted URL. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0386 BugTraq ID: 10008 http://www.securityfocus.com/bid/10008 Bugtraq: 20040330 Heap overflow in MPlayer (Google Search) http://www.securityfocus.com/archive/1/359025 Bugtraq: 20040330 MPlayer Security Advisory #002 - HTTP parsing vulnerability (Google Search) http://marc.info/?l=bugtraq&m=108067020624076&w=2 CERT/CC vulnerability note: VU#723910 http://www.kb.cert.org/vuls/id/723910 http://security.gentoo.org/glsa/glsa-200403-13.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:026 http://secunia.com/advisories/11259 XForce ISS Database: mplayer-header-bo(15675) https://exchange.xforce.ibmcloud.com/vulnerabilities/15675
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.