This script is Copyright (C) 2005-2014 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200501-04
(Shoutcast Server: Remote code execution)
Part of the Shoutcast Server Linux binary has been found to improperly
handle sprintf() parsing.
A malicious attacker could send a formatted URL request to the
Shoutcast Server. This formatted URL would cause either the server
process to crash, or the execution of arbitrary code.
There is no known workaround at this time.
See also :
All Shoutcast Server users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-sound/shoutcast-server-bin-1.9.5'
Risk factor :
High / CVSS Base Score : 7.5
Public Exploit Available : true
Family: Gentoo Local Security Checks
Nessus Plugin ID: 16395 (gentoo_GLSA-200501-04.nasl)
CVE ID: CVE-2004-1373