Lucene search
This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-1496.NASLHistoryFeb 14, 2008 - 12:00 a.m.
Debian DSA-1496-1 : mplayer - buffer overflows
2008-02-1400:00:00
This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.207 Low
EPSS
Percentile
96.4%
Several buffer overflows have been discovered in the MPlayer movie player, which might lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems :
-
CVE-2008-0485 Felipe Manzano and Anibal Sacco discovered a buffer overflow in the demuxer for MOV files.
-
CVE-2008-0486 Reimar Doeffinger discovered a buffer overflow in the FLAC header parsing.
-
CVE-2008-0629 Adam Bozanich discovered a buffer overflow in the CDDB access code.
-
CVE-2008-0630 Adam Bozanich discovered a buffer overflow in URL parsing.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-1496. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(31056);
script_version("1.18");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2008-0485", "CVE-2008-0486", "CVE-2008-0629", "CVE-2008-0630");
script_xref(name:"DSA", value:"1496");
script_name(english:"Debian DSA-1496-1 : mplayer - buffer overflows");
script_summary(english:"Checks dpkg output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security-related update."
);
script_set_attribute(
attribute:"description",
value:
"Several buffer overflows have been discovered in the MPlayer movie
player, which might lead to the execution of arbitrary code. The
Common Vulnerabilities and Exposures project identifies the following
problems :
- CVE-2008-0485
Felipe Manzano and Anibal Sacco discovered a buffer
overflow in the demuxer for MOV files.
- CVE-2008-0486
Reimar Doeffinger discovered a buffer overflow in the
FLAC header parsing.
- CVE-2008-0629
Adam Bozanich discovered a buffer overflow in the CDDB
access code.
- CVE-2008-0630
Adam Bozanich discovered a buffer overflow in URL
parsing."
);
script_set_attribute(
attribute:"see_also",
value:"https://security-tracker.debian.org/tracker/CVE-2008-0485"
);
script_set_attribute(
attribute:"see_also",
value:"https://security-tracker.debian.org/tracker/CVE-2008-0486"
);
script_set_attribute(
attribute:"see_also",
value:"https://security-tracker.debian.org/tracker/CVE-2008-0629"
);
script_set_attribute(
attribute:"see_also",
value:"https://security-tracker.debian.org/tracker/CVE-2008-0630"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.debian.org/security/2008/dsa-1496"
);
script_set_attribute(
attribute:"solution",
value:
"Upgrade the mplayer packages.
The old stable distribution (sarge) doesn't contain mplayer.
For the stable distribution (etch), these problems have been fixed in
version 1.0~rc1-12etch2."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploit_framework_core", value:"true");
script_cwe_id(119, 189);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:mplayer");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:4.0");
script_set_attribute(attribute:"patch_publication_date", value:"2008/02/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2008/02/14");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"4.0", prefix:"mplayer", reference:"1.0~rc1-12etch2")) flag++;
if (deb_check(release:"4.0", prefix:"mplayer-doc", reference:"1.0~rc1-12etch2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | mplayer | p-cpe:/a:debian:debian_linux:mplayer |
| debian | debian_linux | 4.0 | cpe:/o:debian:debian_linux:4.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0485
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0486
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0629
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0630
security-tracker.debian.org/tracker/CVE-2008-0485
security-tracker.debian.org/tracker/CVE-2008-0486
security-tracker.debian.org/tracker/CVE-2008-0629
security-tracker.debian.org/tracker/CVE-2008-0630
www.debian.org/security/2008/dsa-1496
Related
nessus
nessus
Mandriva Linux Security Advisory : xine-lib (MDVSA-2008:046-1)
2009-04-23 00:00:00
FreeBSD : mplayer -- multiple vulnerabilities (de4d4110-ebce-11dc-ae14-0016179b2dd5)
2008-03-07 00:00:00
GLSA-200803-16 : MPlayer: Multiple buffer overflows
2008-03-13 00:00:00
openvas
openvas
mplayer -- multiple vulnerabilities
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200803-16 (mplayer)
2008-09-24 00:00:00
mplayer -- multiple vulnerabilities
2008-09-04 00:00:00
securityvulns
securityvulns
[ GLSA 200803-16 ] MPlayer: Multiple buffer overflows
2008-03-11 00:00:00
MPlayer multiple security vulnerabilities
2008-03-11 00:00:00
Mplayer / Xine multiple security vulnerabilities
2008-02-16 00:00:00
freebsd
freebsd
mplayer -- multiple vulnerabilities
2008-02-05 00:00:00
libxine -- buffer overflow vulnerability
2007-02-08 00:00:00
gentoo
gentoo
MPlayer: Multiple buffer overflows
2008-03-10 00:00:00
xine-lib: User-assisted execution of arbitrary code
2008-02-26 00:00:00
debian
debian
[SECURITY] [DSA 1496-1] New mplayer packages fix arbitrary code execution
2008-02-12 22:59:52
[SECURITY] [DSA 1536-1] New libxine packages fix several vulnerabilities
2008-03-31 20:51:58
osv
osv
mplayer - arbitrary code execution
2008-02-12 00:00:00
xine-lib - several vulnerabilities
2008-03-31 00:00:00
nvd
nvd
seebug
seebug
MPlayer demux_audio.cθΏη¨ζ ζΊ’εΊζΌζ΄
2008-02-14 00:00:00
debiancve
debiancve
prion
prion
Code injection
2008-02-05 12:00:00
Buffer overflow
2008-02-06 21:00:00
Design/Logic Flaw
2008-02-06 21:00:00
cvelist
cvelist
coresecurity
coresecurity
Mplayer Arbitrary Pointer Derreference
2008-02-04 00:00:00
MPlayer 1.0rc2 Buffer Overflow Vulnerability
2008-02-04 00:00:00
cve
cve
kaspersky
kaspersky
KLA10253 ACE vulnerability in MPlayer
2008-02-05 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: xine-lib-1.1.10.1-1.fc8
2008-02-13 05:06:27
[SECURITY] Fedora 7 Update: xine-lib-1.1.10.1-1.fc7
2008-02-13 05:12:05
ubuntucve
ubuntucve
ubuntu
ubuntu
xine-lib vulnerabilities
2008-08-06 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.207 Low
EPSS
Percentile
96.4%
Related for DEBIAN_DSA-1496.NASL