Test ID:	1.3.6.1.4.1.25623.1.0.55236
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2005:158 (mplayer)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to mplayer announced via advisory MDKSA-2005:158. Buffer overflow in ad_pcm.c in MPlayer 1.0pre7 and earlier allows remote attackers to execute arbitrary code via a video file with an audio header containing a large value in a strf chunk. The updated packages have been patched to correct this problem. Affected versions: 10.1, 10.2, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2005:158 http://www.sven-tantau.de/public_files/mplayer/mplayer_20050824.txt Risk factor : High CVSS Score: 7.5
Cross-Ref:	BugTraq ID: 14652 Common Vulnerability Exposure (CVE) ID: CVE-2005-2718 http://www.securityfocus.com/bid/14652 http://marc.info/?l=full-disclosure&m=112484733122809&w=2 http://www.mandriva.com/security/advisories?name=MDKSA-2005:158 http://www.sven-tantau.de/public_files/mplayer/mplayer_20050824.txt
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.