ID de Prueba:	1.3.6.1.4.1.25623.1.0.56658
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: xine
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: xine CVE-2006-1905 Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-1905 BugTraq ID: 17579 http://www.securityfocus.com/bid/17579 Bugtraq: 20060418 Remote Xine Format String Vulnerability (Google Search) http://www.securityfocus.com/archive/1/431251/100/0/threaded http://www.gentoo.org/security/en/glsa/glsa-200604-15.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:085 http://open-security.org/advisories/16 http://www.osvdb.org/24747 http://securitytracker.com/id?1015959 http://secunia.com/advisories/19671 http://secunia.com/advisories/19854 http://secunia.com/advisories/20066 SuSE Security Announcement: SUSE-SA:2006:025 (Google Search) http://www.novell.com/linux/security/advisories/2006_05_05.html http://www.vupen.com/english/advisories/2006/1432 XForce ISS Database: xine-playlist-format-string(25851) https://exchange.xforce.ibmcloud.com/vulnerabilities/25851
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.