Family: FreeBSD Local Security Checks --> Category: infos
FreeBSD Ports: libxine < 1.0r5_2 Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the libxine package
Detailed Explanation for this Vulnerability Test
The remote host has an old version of libxine installed.
libxine is a set of libraries for the Xine multimedia player. There is a buffer
overflow condition in the remote version of this library which may allow
a possible hacker to execute arbitrary code on the remote host when a libxine-enabled
application processes a malformed vcd:// input source indentifier.
To exploit this flaw, a possible hacker would need to send a malicious playlist file
to a Xine user on the remote host, containing a malformed vcd:// link.
Solution : http://www.vuxml.org/freebsd/bef4515b-eaa9-11d8-9440-000347a4fa7d.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.