This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-201311-12
(Open DC Hub: Arbitrary code execution)
A stack-based buffer overflow flaw has been discovered in the way Open
DC Hub sanitized content of a user’s MyINFO message.
A remote authenticated user may be able to execute arbitrary code or
cause a Denial of Service condition via specially crafted MyINFO message.
There is no known workaround at this time.
See also :
All Open DC Hub users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=net-p2p/opendchub-0.8.2'
Risk factor :
Medium / CVSS Base Score : 6.0
CVSS Temporal Score : 5.2
Public Exploit Available : true