FreeBSD : mplayer -- multiple vulnerabilities (de4d4110-ebce-11dc-ae14-0016179b2dd5)

This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

The Mplayer team reports :

A buffer overflow was found in the code used to extract album titles
from CDDB server answers. When parsing answers from the CDDB server,
the album title is copied into a fixed-size buffer with insufficient
size checks, which may cause a buffer overflow. A malicious database
entry could trigger a buffer overflow in the program. That can lead to
arbitrary code execution with the UID of the user running MPlayer.

A buffer overflow was found in the code used to escape URL strings.
The code used to skip over IPv6 addresses can be tricked into leaving
a pointer to a temporary buffer with a non-NULL value; this causes the
unescape code to reuse the buffer, and may lead to a buffer overflow
if the old buffer is smaller than required. A malicious URL string may
be used to trigger a buffer overflow in the program, that can lead to
arbitrary code execution with the UID of the user running MPlayer.

A buffer overflow was found in the code used to parse MOV file
headers. The code read some values from the file and used them as
indexes into as array allocated on the heap without performing any
boundary check. A malicious file may be used to trigger a buffer
overflow in the program. That can lead to arbitrary code execution
with the UID of the user running MPlayer.

See also :

http://www.nessus.org/u?4f86faa5

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 31378 (freebsd_pkg_de4d4110ebce11dcae140016179b2dd5.nasl)

Bugtraq ID:

CVE ID: CVE-2008-0485
CVE-2008-0486
CVE-2008-0629
CVE-2008-0630

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now