Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:158: mplayer Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the mplayer package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:158 (mplayer).
Buffer overflow in ad_pcm.c in MPlayer 1.0pre7 and earlier allows remote
attackers to execute arbitrary code via a video file with an audio header
containing a large value in a strf chunk.
The updated packages have been patched to correct this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:158
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.