This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Multiple vulnerabilities has been discovered and corrected in
An integer overflow within the abc_set_parts() function
(src/load_abc.cpp) can be exploited to corrupt heap memory via a
specially crafted ABC file (CVE-2013-4233).
An error within the abc_MIDI_drum() and abc_MIDI_gchord() functions
(src/load_abc.cpp) can be exploited to cause a buffer overflow via a
specially crafted ABC file (CVE-2013-4234).
The updated packages have been patched to correct these issues.
Update the affected lib64modplug-devel and / or lib64modplug1
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : false