home *** CD-ROM | disk | FTP | other *** search
/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / modules / nessus-2.2.8.mo / usr / lib / nessus / plugins / mandrake_MDKSA-2004-157.nasl < prev    next >
Text File  |  2005-01-14  |  3KB  |  115 lines
  1. #
  2. # (C) Tenable Network Security
  3. #
  4. # This plugin text was extracted from Mandrake Linux Security Advisory MDKSA-2004:157
  5. #
  6.  
  7.  
  8. if ( ! defined_func("bn_random") ) exit(0);
  9. if(description)
  10. {
  11.  script_id(16038);
  12.  script_version ("$Revision: 1.1 $");
  13.  
  14.  name["english"] = "MDKSA-2004:157: mplayer";
  15.  
  16.  script_name(english:name["english"]);
  17.  
  18.  desc["english"] = "
  19. The remote host is missing the patch for the advisory MDKSA-2004:157 (mplayer).
  20.  
  21.  
  22.  
  23. A number of vulnerabilities were discovered in the MPlayer program by iDEFENSE,
  24. Ariel Berkman, and the MPlayer development team. These vulnerabilities include
  25. potential heap overflows in Real RTSP and pnm streaming code, stack overflows
  26. in MMST streaming code, and multiple buffer overflows in the BMP demuxer and
  27. mp3lib code.
  28.  
  29. The updated packages have been patched to prevent these problems.
  30.  
  31.  
  32.  
  33. Solution : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:157
  34. Risk factor : High";
  35.  
  36.  
  37.  
  38.  script_description(english:desc["english"]);
  39.  
  40.  summary["english"] = "Check for the version of the mplayer package";
  41.  script_summary(english:summary["english"]);
  42.  
  43.  script_category(ACT_GATHER_INFO);
  44.  
  45.  script_copyright(english:"This script is Copyright (C) 2004 Tenable Network Security");
  46.  family["english"] = "Mandrake Local Security Checks";
  47.  script_family(english:family["english"]);
  48.  
  49.  script_dependencies("ssh_get_info.nasl");
  50.  script_require_keys("Host/Mandrake/rpm-list");
  51.  exit(0);
  52. }
  53.  
  54. include("rpm.inc");
  55. if ( rpm_check( reference:"libdha0.1-1.0-0.pre3.14.100mdk", release:"MDK10.0", yank:"mdk") )
  56. {
  57.  security_hole(0);
  58.  exit(0);
  59. }
  60. if ( rpm_check( reference:"libpostproc0-1.0-0.pre3.14.100mdk", release:"MDK10.0", yank:"mdk") )
  61. {
  62.  security_hole(0);
  63.  exit(0);
  64. }
  65. if ( rpm_check( reference:"libpostproc0-devel-1.0-0.pre3.14.100mdk", release:"MDK10.0", yank:"mdk") )
  66. {
  67.  security_hole(0);
  68.  exit(0);
  69. }
  70. if ( rpm_check( reference:"mencoder-1.0-0.pre3.14.100mdk", release:"MDK10.0", yank:"mdk") )
  71. {
  72.  security_hole(0);
  73.  exit(0);
  74. }
  75. if ( rpm_check( reference:"mplayer-1.0-0.pre3.14.100mdk", release:"MDK10.0", yank:"mdk") )
  76. {
  77.  security_hole(0);
  78.  exit(0);
  79. }
  80. if ( rpm_check( reference:"mplayer-gui-1.0-0.pre3.14.100mdk", release:"MDK10.0", yank:"mdk") )
  81. {
  82.  security_hole(0);
  83.  exit(0);
  84. }
  85. if ( rpm_check( reference:"libdha1.0-1.0-0.pre5.7.101mdk", release:"MDK10.1", yank:"mdk") )
  86. {
  87.  security_hole(0);
  88.  exit(0);
  89. }
  90. if ( rpm_check( reference:"libpostproc0-1.0-0.pre5.7.101mdk", release:"MDK10.1", yank:"mdk") )
  91. {
  92.  security_hole(0);
  93.  exit(0);
  94. }
  95. if ( rpm_check( reference:"libpostproc0-devel-1.0-0.pre5.7.101mdk", release:"MDK10.1", yank:"mdk") )
  96. {
  97.  security_hole(0);
  98.  exit(0);
  99. }
  100. if ( rpm_check( reference:"mencoder-1.0-0.pre5.7.101mdk", release:"MDK10.1", yank:"mdk") )
  101. {
  102.  security_hole(0);
  103.  exit(0);
  104. }
  105. if ( rpm_check( reference:"mplayer-1.0-0.pre5.7.101mdk", release:"MDK10.1", yank:"mdk") )
  106. {
  107.  security_hole(0);
  108.  exit(0);
  109. }
  110. if ( rpm_check( reference:"mplayer-gui-1.0-0.pre5.7.101mdk", release:"MDK10.1", yank:"mdk") )
  111. {
  112.  security_hole(0);
  113.  exit(0);
  114. }
  115.