This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200710-01
(RPCSEC_GSS library: Buffer overflow)
A stack based buffer overflow has been discovered in the
svcauth_gss_validate() function in file lib/rpc/svc_auth_gss.c when
processing an overly long string in a RPC message.
A remote attacker could send a specially crafted RPC request to an
application relying on this library, e.g NFSv4 or Kerberos
(GLSA-200709-01), resulting in the execution of arbitrary code with the
privileges of the user running the application.
There is no known workaround at this time.
See also :
All librpcsecgss users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=net-libs/librpcsecgss-0.16'
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true