This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Will Drewry of the Google Security Team reported several
vulnerabilities in how libvorbis processed audio data. An attacker
could create a carefully crafted OGG audio file in such a way that it
would cause an application linked to libvorbis to crash or possibly
execute arbitrary code when opened (CVE-2008-1419, CVE-2008-1420,
The updated packages have been patched to correct these issues.
Update the affected packages.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false
Family: Mandriva Local Security Checks
Nessus Plugin ID: 36438 (mandriva_MDVSA-2008-102.nasl)
Bugtraq ID: 29206
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now