This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
The Speex library was found to not properly validate input values read
from the Speex files headers. An attacker could create a malicious
Speex file that would crash an application or, possibly, allow
arbitrary code execution with the privileges of the application
calling the Speex library. (CVE-2008-1686)
See also :
Update the affected speex and / or speex-devel packages.
Risk factor :
High / CVSS Base Score : 9.3
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 60386 ()
CVE ID: CVE-2008-1686