MPlayer Crafted Media File Integer Overflow
Medium Nessus Network Monitor Plugin ID 3491
SynopsisThe remote host is vulnerable to an integer overflow
DescriptionThe remote host is using a version of MPlayer, a multimedia video and audio application. This version of MPlayer is vulnerable to an integer overflow due to a lack of content parsing. An attacker exploiting this flaw would need to craft a malicious media file and then convince a local user to download and play the file within MPlayer. Successful exploitation would result in arbitrary code being executed locally.
SolutionUpgrade or patch according to vendor recommendations.