Big bug fix for Linux a month in coming
Linux vendors are urging users to patch a serious bug in the graphical user interface of the popular Mplayer media player application, which could allow a remote attacker to execute malicious code on a Linux or Unix system.
Gentoo Linux released an advisory on Monday, instructing users to upgrade to the latest version of Mplayer. However, developers have warned that more bugs of the same sort are likely to be uncovered in Mplayer's GUI and recommended administrators to switch the interface off.
The application comes with many Linux distributions and is likely to have the GUI switched on by default, warned "c0ntex", the researcher at Open Security Group who discovered the flaw. It was originally confirmed on Red Hat and FreeBSD installations, though any version of Linux is likely to be vulnerable.
The bug was first publicly reported on the Bugtraq security mailing list about a month ago, and the Mplayer project released a fix at that time, which Linux vendors are now tailoring for their individual distributions. All versions of Mplayer up to 1.0pre4 are vulnerable, c0ntex said.
A problem in the common.c file, part of the GUI, is vulnerable to a buffer overflow caused by improper checking of user-supplied input. The result is that if a user were enticed to play a specially-crafted media file the player could be crashed or malicious code executed on the system.
More problems are likely to surface in common.c, according to one Mplayer developer. In a message to a Mplayer developers' email list in early June, programmer Richard Felker said he had discovered "lots" of buffer overflows in the file. "I would recommend not using the GUI," he wrote. "This code is so nasty and broken that I'm not going to spend my time fixing it... if you want the GUI to work, and don't want to be embarrassed by remote (vulnerabilities) in Mplayer, step up and fix it."
Advisories from Secunia, Internet Security Systems Inc. and others have given the Mplayer bug a high-risk rating. The bug has the reference code CAN-2004-0659 in the U.S. government-backed Common Vulnerabilities and Exposures database.
» posted by abennett
Techworld.com
Symantec Backup Exec 12 and Backup Exec System Recovery 8 deliver industry leading Windows data protection and system recovery. Download this whitepaper to find out the top reasons to upgrade and how to get continuous data protection and complete system recovery.
Data and system loss — from a hard drive failure, malicious attack, natural disaster, or simple human error — can happen anytime. Don’t leave your business vulnerable. Make sure you have a secure recovery strategy in place. Symantec's latest backup and system recovery technology can efficiently restore critical applications, individual emails and documents and even restore your entire system in minutes in the event of a loss.
Businesses face a growing challenge to ensure that the IT environment is properly protected. Backup Exec 12 integrates with other applications in the Symantec family of products, to complement your current data protection strategy, keep your data securely backed up and make it recoverable when you need it most.
Enterprise 2.0 Implementation
By Aaron C. Newman, Jeremy Thomas
Published by McGraw-Hill
Learn more!
Deploying Cisco Wide Area Application Services
By Zach Seils, Joel Christner
Published by Cisco Press
Learn more!
