FreeBSD : ffmpeg -- remote attacker can access local files (046fedd1-bd01-11e5-bbf4-5404a68ad561)
Medium Nessus Plugin ID 87980
The remote FreeBSD host is missing one or more security-related updates.
Arch Linux reports : ffmpeg has a vulnerability in the current version that allows the attacker to create a specially crafted video file, downloading which will send files from a user PC to a remote attacker server. The attack does not even require the user to open that file -- for example, KDE Dolphin thumbnail generation is enough.