|
Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:075: libcdaudio1 Vulnerability Scan
Vulnerability Scan Summary Check for the version of the libcdaudio1 package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:075 (libcdaudio1).
A buffer overflow bug was found by Joseph VanAndel in the way that grip handles
data returned by CDDB servers. If a user connected to a malicious CDDB server,
a possible hacker could execute arbitrary code on the user's machine. This same
vulnerability is present in the libcdaudio1 code.
The updated packages have been patched to correct these issues.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:075
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|