Summary
The remote host is missing an update to the system as announced in the referenced advisory.
Solution
Update your system with the appropriate patches or software upgrades.
http://www.alighieri.org/advisories/advisory-mpg123.txt http://www.vuxml.org/freebsd/15e0e963-02ed-11d9-a209-00061bc2ad93.html
Insight
The following packages are affected:
mpg123
mpg123-nas
mpg123-esound
CVE-2004-0805
Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.
Severity
Classification
-
CVE CVE-2004-0805 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities