Summary
The remote host is missing an update to the system as announced in the referenced advisory.
Solution
Update your system with the appropriate patches or software upgrades.
http://www.mplayerhq.hu/homepage/design6/news.html http://marc.theaimsgroup.com/?l=bugtraq&m=108066964709058 http://www.vuxml.org/freebsd/5e7f58c3-b3f8-4258-aeb8-795e5e940ff8.html
Insight
The following packages are affected:
mplayer
mplayer-gtk
mplayer-esound
mplayer-gtk-esound
The installed version of MPlayer suffers from a buffer overflow in the HTTP handler that allows an attacker to execute arbitrary code if the attacker can arrange for you to visit a specially crafted URL.
Severity
Classification
-
CVE CVE-2004-0386 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities