ID de Prueba:	1.3.6.1.4.1.25623.1.0.61624
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2008:196 (mplayer)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to mplayer announced via advisory MDVSA-2008:196. Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to overwrite memory and execute arbitrary code via a large streamid SDP parameter. The updated packages have been patched to fix this issue. Affected: 2008.0, 2008.1, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2008:196 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1558 BugTraq ID: 28851 http://www.securityfocus.com/bid/28851 Debian Security Information: DSA-1552 (Google Search) http://www.debian.org/security/2008/dsa-1552 https://www.exploit-db.com/exploits/5307 http://security.gentoo.org/glsa/glsa-200805-22.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:196 http://secunia.com/advisories/29515 http://secunia.com/advisories/29921 http://secunia.com/advisories/30412 http://www.vupen.com/english/advisories/2008/0997/references XForce ISS Database: mplayer-sdpplin-overflow(41490) https://exchange.xforce.ibmcloud.com/vulnerabilities/41490
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.