|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200609-06] AdPlug: Multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
AdPlug: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200609-06
(AdPlug: Multiple vulnerabilities)
AdPlug is vulnerable to buffer and heap overflows when processing the
following types of files: CFF, MTK, DMO, U6M, DTM, and S3M.
Impact
By enticing a user to load a specially crafted file, a possible hacker could
execute arbitrary code with the rights of the user running AdPlug.
Workaround
There are no known workarounds at this time.
References:
http://www.securityfocus.com/archive/1/439432/30/0/threaded
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3581
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3582
Solution:
All AdPlug users should update to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-libs/adplug-2.0.1"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
