Test ID:	1.3.6.1.4.1.25623.1.0.58632
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2007:192 (mplayer)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to mplayer announced via advisory MDKSA-2007:192. A heap-based buffer overflow was found in MPlayer's AVI handling that could allow a remote attacker to cause a denial of service or possibly execute arbitrary code via a crafted .avi file. Updated packages have been patched to prevent this issue. Affected: 2007.0, 2007.1 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:192 Risk factor : High CVSS Score: 7.6
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4938 BugTraq ID: 25648 http://www.securityfocus.com/bid/25648 Bugtraq: 20070912 CAL-20070912-1 Multiple vendor produce handling AVI file vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/479222/100/0/threaded http://www.mandriva.com/security/advisories?name=MDKSA-2007:192 http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt http://osvdb.org/45940 http://secunia.com/advisories/27016 http://securityreason.com/securityalert/3144 XForce ISS Database: mplayer-avi-file-bo(36581) https://exchange.xforce.ibmcloud.com/vulnerabilities/36581
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.