Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:115: mplayer Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the mplayer package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:115 (mplayer).
Two heap overflows were discovered in mplayer's code handling the RealMedia
RTSP and Microsoft Media Services streams over TCP (MMST). These
vulnerabilities could allow for a malicious server to execute arbitrary code on
the client computer with the permissions of the user running MPlayer.
The updated packages have been patched to correct this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:115
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.