[MPlayer-dev-eng] cvs remote vulnerability
D Richard Felker III
dalias at aerifal.cx
Tue Jan 21 17:16:00 CET 2003
On Tue, Jan 21, 2003 at 11:57:24AM +0100, Robert Penz wrote:
> http://security.e-matters.de/advisories/012003.html?SID=b105dbb11a6affba5feee752bfc3c53e
Anyone know how real/serious this is? The advisories are always lame
and don't properly explain what privileges are compromised. I assume
if you exploit anon cvs you only get an account as the anon cvs user,
but with the 'security scene' kids trying to make their exploits look
serious to boost their egos and reputations, they like to leave this
sort of info out... :(
In any case, mphq should probably upgrade asap.
Rich
More information about the MPlayer-dev-eng
mailing list