Mandrake Linux Security Advisory : libmms (MDKSA-2006:117-1)
Medium Nessus Plugin ID 22013
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionStack-based buffer overflow in MiMMS 0.0.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions. Libmms uses the same vulnerable code.
The previous update for libmms had an incorrect/incomplete patch. This update includes a more complete fix for the issue.
SolutionUpdate the affected packages.