This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200604-15
(xine-ui: Format string vulnerabilities)
Ludwig Nussel discovered that xine-ui incorrectly implements
By constructing a malicious playlist file, a remote attacker could
exploit these vulnerabilities to execute arbitrary code with the rights
of the user running the application.
There is no known workaround at this time.
See also :
All xine-ui users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-video/xine-ui-0.99.4-r5'
Risk factor :
High / CVSS Base Score : 7.5
Family: Gentoo Local Security Checks
Nessus Plugin ID: 21297 (gentoo_GLSA-200604-15.nasl)
CVE ID: CVE-2006-1905