This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Scientific Linux host is missing a security update.
CVE-2009-3720 expat: buffer over-read and crash on XML with malformed
A buffer over-read flaw was found in the way 4Suite's XML parser
handles malformed UTF-8 sequences when processing XML files. A
specially-crafted XML file could cause applications using the 4Suite
library to crash while parsing the file. (CVE-2009-3720)
After installing the updated package, applications using the 4Suite
XML-related tools and libraries must be restarted for the update to
See also :
Update the affected 4Suite package.
Risk factor :
Medium / CVSS Base Score : 5.0
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 60693 ()
CVE ID: CVE-2009-3720