This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
The MITRE CVE database describes CVE-2011-2766 as :
The FCGI (aka Fast CGI) module 0.70 through 0.73 for Perl, as used by
CGI::Fast, uses environment variable values from one request during
processing of a later request, which allows remote attackers to bypass
authentication via crafted HTTP headers.
See also :
Run 'yum upgrade perl-FCGI' to upgrade your system.
Risk factor :
High / CVSS Base Score : 7.5
Family: Amazon Linux Local Security Checks
Nessus Plugin ID: 69564 ()
CVE ID: CVE-2011-2766