MPlayer < 0.92.0 ASX Header Parsing Buffer Overflow

high Nessus Network Monitor Plugin ID 1768

Synopsis

The remote host is using a vulnerable version of MPlayer.

Description

The remote host is using a version of MPlayer which is vulnerable to a buffer overflow. If MPlayer connects to a rogue web server, the server may send a malicious reply which will be executed on this host.
To exploit this vulnerability, an attacker would have to lure the user of this system to visit his website with MPlayer. The attacker then would need to have the web site send malformed replies to this host.

Solution

Upgrade to MPlayer 0.92.0 or higher.

Plugin Details

Severity: High

ID: 1768

Family: Web Clients

Published: 8/20/2004

Updated: 3/6/2019

Nessus ID: 14079

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: High

Base Score: 7.3

Temporal Score: 6.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:mplayer:mplayer

Reference Information

CVE: CVE-2003-0835

BID: 8702