Test ID:	1.3.6.1.4.1.25623.1.0.60789
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-1543-1)
Summary:	The remote host is missing an update for the Debian 'vlc' package(s) announced via the DSA-1543-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'vlc' package(s) announced via the DSA-1543-1 advisory. Vulnerability Insight: Luigi Auriemma, Alin Rad Pop, Remi Denis-Courmont, Quovodis, Guido Landi, Felipe Manzano, Anibal Sacco and others discovered multiple vulnerabilities in vlc, an application for playback and streaming of audio and video. In the worst case, these weaknesses permit a remote, unauthenticated attacker to execute arbitrary code with the privileges of the user running vlc. The Common Vulnerabilities and Exposures project identifies the following eight problems: CVE-2007-6681 A buffer overflow vulnerability in subtitle handling allows an attacker to execute arbitrary code through the opening of a maliciously crafted MicroDVD, SSA or Vplayer file. CVE-2007-6682 A format string vulnerability in the HTTP-based remote control facility of the vlc application allows a remote, unauthenticated attacker to execute arbitrary code. CVE-2007-6683 Insecure argument validation allows a remote attacker to overwrite arbitrary files writable by the user running vlc, if a maliciously crafted M3U playlist or MP3 audio file is opened. CVE-2008-0295, CVE-2008-0296 Heap buffer overflows in RTSP stream and session description protocol (SDP) handling allow an attacker to execute arbitrary code if a maliciously crafted RTSP stream is played. CVE-2008-0073 Insufficient integer bounds checking in SDP handling allows the execution of arbitrary code through a maliciously crafted SDP stream ID parameter in an RTSP stream. CVE-2008-0984 Insufficient integrity checking in the MP4 demuxer allows a remote attacker to overwrite arbitrary memory and execute arbitrary code if a maliciously crafted MP4 file is opened. CVE-2008-1489 An integer overflow vulnerability in MP4 handling allows a remote attacker to cause a heap buffer overflow, inducing a crash and possibly the execution of arbitrary code if a maliciously crafted MP4 file is opened. For the stable distribution (etch), these problems have been fixed in version 0.8.6-svn20061012.debian-5.1+etch2. For the unstable distribution (sid), these problems have been fixed in version 0.8.6.e-2. We recommend that you upgrade your vlc packages. Affected Software/OS: 'vlc' package(s) on Debian 4. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6681 BugTraq ID: 27015 http://www.securityfocus.com/bid/27015 Bugtraq: 20071224 Buffer-overflow and format string in VideoLAN VLC 0.8.6d (Google Search) http://www.securityfocus.com/archive/1/485488/30/0/threaded Debian Security Information: DSA-1543 (Google Search) http://www.debian.org/security/2008/dsa-1543 https://www.exploit-db.com/exploits/5667 http://www.gentoo.org/security/en/glsa/glsa-200803-13.xml http://security.gentoo.org/glsa/glsa-200804-25.xml http://aluigi.altervista.org/adv/vlcboffs-adv.txt http://mailman.videolan.org/pipermail/vlc-devel/2007-June/032672.html http://mailman.videolan.org/pipermail/vlc-devel/2007-June/033394.html http://osvdb.org/42207 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14334 http://secunia.com/advisories/28233 http://secunia.com/advisories/29284 http://secunia.com/advisories/29766 http://secunia.com/advisories/29800 http://securityreason.com/securityalert/3550 Common Vulnerability Exposure (CVE) ID: CVE-2007-6682 https://www.exploit-db.com/exploits/5519 http://osvdb.org/42208 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14790 Common Vulnerability Exposure (CVE) ID: CVE-2007-6683 BugTraq ID: 28712 http://www.securityfocus.com/bid/28712 http://mailman.videolan.org/pipermail/vlc-devel/2007-December/037726.html http://osvdb.org/42205 http://osvdb.org/42206 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14619 Common Vulnerability Exposure (CVE) ID: CVE-2008-0073 BugTraq ID: 28312 http://www.securityfocus.com/bid/28312 Debian Security Information: DSA-1536 (Google Search) http://www.debian.org/security/2008/dsa-1536 https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00456.html https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00143.html http://security.gentoo.org/glsa/glsa-200808-01.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:178 http://www.mandriva.com/security/advisories?name=MDVSA-2008:219 http://secunia.com/secunia_research/2008-10/ http://www.securitytracker.com/id?1019682 http://secunia.com/advisories/28694 http://secunia.com/advisories/29392 http://secunia.com/advisories/29472 http://secunia.com/advisories/29503 http://secunia.com/advisories/29578 http://secunia.com/advisories/29601 http://secunia.com/advisories/29740 http://secunia.com/advisories/30581 http://secunia.com/advisories/31372 http://secunia.com/advisories/31393 http://www.slackware.org/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.392408 SuSE Security Announcement: SUSE-SR:2008:007 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00008.html SuSE Security Announcement: SUSE-SR:2008:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html http://www.ubuntu.com/usn/usn-635-1 http://www.vupen.com/english/advisories/2008/0923 http://www.vupen.com/english/advisories/2008/0985 XForce ISS Database: xinelib-sdpplinparse-bo(41339) https://exchange.xforce.ibmcloud.com/vulnerabilities/41339 Common Vulnerability Exposure (CVE) ID: CVE-2008-0295 BugTraq ID: 27221 http://www.securityfocus.com/bid/27221 http://aluigi.altervista.org/adv/vlcxhof-adv.txt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14776 http://secunia.com/advisories/28383 http://www.vupen.com/english/advisories/2008/0105 Common Vulnerability Exposure (CVE) ID: CVE-2008-0296 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14597 Common Vulnerability Exposure (CVE) ID: CVE-2008-0984 BugTraq ID: 28007 http://www.securityfocus.com/bid/28007 Bugtraq: 20080227 CORE-2008-0130: VLC media player chunk context validation error (Google Search) http://www.securityfocus.com/archive/1/488841/100/0/threaded http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060481.html http://www.coresecurity.com/?action=item&id=2147 http://www.securitytracker.com/id?1019510 http://secunia.com/advisories/29122 http://secunia.com/advisories/29153 http://www.vupen.com/english/advisories/2008/0682 Common Vulnerability Exposure (CVE) ID: CVE-2008-1489 BugTraq ID: 28433 http://www.securityfocus.com/bid/28433 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14841 XForce ISS Database: vlcmediaplayer-mp4readbox-rdrf-bo(41412) https://exchange.xforce.ibmcloud.com/vulnerabilities/41412
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.