FreeBSD : grip -- CDDB response multiple matches buffer overflow vulnerability (bcf27002-94c3-11d9-a9e0-0001020eed82)
High Nessus Plugin ID 19101
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionJoseph VanAndel reports that grip is vulnerability to a buffer overflow vulnerability when receiving more than 16 CDDB responses.
This could lead to a crash in grip and potentially execution arbitrary code.
A workaround is to disable CDDB lookups.
SolutionUpdate the affected package.