This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
The SSL protocol, as used in certain configurations in Microsoft
Windows and Microsoft Internet Explorer, Mozilla Firefox, Google
Chrome, Opera, and other products, encrypts data by using CBC mode
with chained initialization vectors, which allows man-in-the-middle
attackers to obtain plaintext HTTP headers via a blockwise
chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with
URLConnection API, or (3) the Silverlight WebClient API, aka a 'BEAST'
python: SimpleXMLRPCServer CPU usage DoS via malformed XML-RPC request
python: hash table collisions CPU usage DoS (CVE-2012-1150)
See also :
Run 'yum update python27' to update your system.
Risk factor :
Medium / CVSS Base Score : 5.0