This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
It was discovered that the fix for CVE-2011-4885 (released via
ALAS-2012-37) introduced an uninitialized memory use flaw. A remote
attacker could send a specially-crafted HTTP request to cause the PHP
interpreter to crash or, possibly, execute arbitrary code.
See also :
Run 'yum update php*' to upgrade your system.
Risk factor :
High / CVSS Base Score : 7.5
Family: Amazon Linux Local Security Checks
Nessus Plugin ID: 69648 ()
CVE ID: CVE-2012-0830