ID de Prueba:	1.3.6.1.4.1.25623.1.0.62856
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: vlc-devel
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: vlc-devel CVE-2008-5276 Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5276 BugTraq ID: 32545 http://www.securityfocus.com/bid/32545 Bugtraq: 20081130 [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/498768/100/0/threaded http://security.gentoo.org/glsa/glsa-200812-24.xml http://www.trapkit.de/advisories/TKADV2008-013.txt http://www.osvdb.org/50333 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793 http://secunia.com/advisories/32942 http://secunia.com/advisories/33315 http://securityreason.com/securityalert/4680 http://www.vupen.com/english/advisories/2008/3287
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.