Test ID:	1.3.6.1.4.1.25623.1.0.703713
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-3713-1)
Summary:	The remote host is missing an update for the Debian 'gst-plugins-bad0.10' package(s) announced via the DSA-3713-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'gst-plugins-bad0.10' package(s) announced via the DSA-3713-1 advisory. Vulnerability Insight: Chris Evans discovered that the GStreamer 0.10 plugin to decode NES Sound Format files allowed the execution of arbitrary code. Further details can be found in his advisory at [link moved to references]. For the stable distribution (jessie), this problem has been fixed in version 0.10.23-7.4+deb8u1. The unstable distribution (sid) no longer contains Gstreamer 0.10. We recommend that you upgrade your gst-plugins-bad0.10 packages. Affected Software/OS: 'gst-plugins-bad0.10' package(s) on Debian 8. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9447 BugTraq ID: 94427 http://www.securityfocus.com/bid/94427 https://security.gentoo.org/glsa/201705-10 http://scarybeastsecurity.blogspot.de/2016/11/0day-exploit-compromising-linux-desktop.html http://www.openwall.com/lists/oss-security/2016/11/18/12 http://www.openwall.com/lists/oss-security/2016/11/18/13 RedHat Security Advisories: RHSA-2016:2974 http://rhn.redhat.com/errata/RHSA-2016-2974.html RedHat Security Advisories: RHSA-2017:0018 http://rhn.redhat.com/errata/RHSA-2017-0018.html
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.