| |||||||||||||
| Test ID: | 1.3.6.1.4.1.25623.1.0.56392 |
| Category: | FreeBSD Local Security Checks |
| Title: | FreeBSD Ports: mplayer, mplayer-gtk, mplayer-esound, mplayer-gtk-esound |
| Summary: | FreeBSD Ports: mplayer, mplayer-gtk, mplayer-esound, mplayer-gtk-esound |
| Description: | The remote host is missing an update to the system as announced in the referenced advisory. The following packages are affected: mplayer mplayer-gtk mplayer-esound mplayer-gtk-esound CVE-2006-0579 Multiple integer overflows in (1) the new_demux_packet function in demuxer.h and (2) the demux_asf_read_packet function in demux_asf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this information is unknown portions of the details are obtained from third party information. Solution: Update your system with the appropriate patches or software upgrades. http://www.mplayerhq.hu/design7/news.html#vuln13 http://secunia.com/advisories/18718 http://bugs.gentoo.org/show_bug.cgi?id=122029 http://www.vuxml.org/freebsd/104beb63-af4d-11da-8414-0013d4a4a40e.html |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2006-0579 http://www.gentoo.org/security/en/glsa/glsa-200603-03.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:048 http://www.vupen.com/english/advisories/2006/0457 http://secunia.com/advisories/18718 http://secunia.com/advisories/19114 XForce ISS Database: mplayer-asf-integer-overflow(24531) http://xforce.iss.net/xforce/xfdb/24531 |
| Copyright | Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com |
| This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2013 E-Soft Inc. All rights reserved.