ID de Prueba:	1.3.6.1.4.1.25623.1.0.60230
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: libxine
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to the system as announced in the referenced advisory. The following package is affected: libxine CVE-2008-0225 Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party information. Solution: Update your system with the appropriate patches or software upgrades. http://aluigi.altervista.org/adv/xinermffhof-adv.txt http://secunia.com/advisories/28384 http://www.vuxml.org/freebsd/02eedd3c-c6b5-11dc-93b6-000e35248ad7.html CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-0225 BugTraq ID: 27198 http://www.securityfocus.com/bid/27198 Debian Security Information: DSA-1472 (Google Search) http://www.debian.org/security/2008/dsa-1472 https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00592.html http://security.gentoo.org/glsa/glsa-200801-12.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:020 http://www.mandriva.com/security/advisories?name=MDVSA-2008:045 http://aluigi.altervista.org/adv/xinermffhof-adv.txt http://secunia.com/advisories/28384 http://secunia.com/advisories/28489 http://secunia.com/advisories/28507 http://secunia.com/advisories/28636 http://secunia.com/advisories/28674 http://secunia.com/advisories/28955 http://secunia.com/advisories/31393 SuSE Security Announcement: SUSE-SR:2008:002 (Google Search) http://www.novell.com/linux/security/advisories/suse_security_summary_report.html http://www.ubuntu.com/usn/usn-635-1 http://www.vupen.com/english/advisories/2008/0163
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.