This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
The MITRE CVE database describes CVE-2011-4815 as :
Ruby (aka CRuby) before 1.8.7-p357 computes hash values without
restricting the ability to trigger hash collisions predictably, which
allows context-dependent attackers to cause a denial of service (CPU
consumption) via crafted input to an application that maintains a hash
See also :
Run 'yum update ruby*' to update your system.
Risk factor :
High / CVSS Base Score : 7.8
Family: Amazon Linux Local Security Checks
Nessus Plugin ID: 69642 ()
CVE ID: CVE-2011-4815