FreeBSD Local Security Checks : FreeBSD Ports: libxine

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.60285

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Ports: libxine

Resumen: The remote host is missing an update to the system; as announced in the referenced advisory.

Descripción: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following package is affected: libxine

CVE-2006-1664
Buffer overflow in xine_list_delete_current in libxine 1.14 and
earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote
attackers to execute arbitrary code via a crafted MPEG stream.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-1664
BugTraq ID: 17370
http://www.securityfocus.com/bid/17370
https://www.exploit-db.com/exploits/1641
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00956.html
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00976.html
http://www.gentoo.org/security/en/glsa/glsa-200604-16.xml
http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=571608
http://www.securityfocus.com/data/vulnerabilities/exploits/xinelib_poc.pl
http://securitytracker.com/id?1015868
http://secunia.com/advisories/19853
http://secunia.com/advisories/19856
http://secunia.com/advisories/28666
XForce ISS Database: xinelib-mpeg-bo(25670)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25670

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60285
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: libxine
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: libxine CVE-2006-1664 Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-1664 BugTraq ID: 17370 http://www.securityfocus.com/bid/17370 https://www.exploit-db.com/exploits/1641 https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00956.html https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00976.html http://www.gentoo.org/security/en/glsa/glsa-200604-16.xml http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=571608 http://www.securityfocus.com/data/vulnerabilities/exploits/xinelib_poc.pl http://securitytracker.com/id?1015868 http://secunia.com/advisories/19853 http://secunia.com/advisories/19856 http://secunia.com/advisories/28666 XForce ISS Database: xinelib-mpeg-bo(25670) https://exchange.xforce.ibmcloud.com/vulnerabilities/25670
Copyright	Copyright (C) 2008 E-Soft Inc.