Test ID:	1.3.6.1.4.1.25623.1.0.57076
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2006:117 (libmms)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libmms announced via advisory MDKSA-2006:117. Stack-based buffer overflow in MiMMS 0.0.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions. Libmms uses the same vulnerable code. The updated packages have been patched to correct this issue. Affected: 2006.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2006:117 Risk factor : High CVSS Score: 5.1
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2200 BugTraq ID: 18608 http://www.securityfocus.com/bid/18608 http://security.gentoo.org/glsa/glsa-200607-07.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:117 http://www.mandriva.com/security/advisories?name=MDKSA-2006:121 http://secunia.com/advisories/20749 http://secunia.com/advisories/20948 http://secunia.com/advisories/20964 http://secunia.com/advisories/21023 http://secunia.com/advisories/21036 http://secunia.com/advisories/21139 http://secunia.com/advisories/23218 http://secunia.com/advisories/23512 http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.433842 http://www.ubuntu.com/usn/usn-309-1 http://www.ubuntu.com/usn/usn-315-1 http://www.vupen.com/english/advisories/2006/2487
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.