This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
The get_group_tree function in lib/Munin/Master/HTMLConfig.pm in Munin
before 2.0.18 allows remote nodes to cause a denial of service
(infinite loop and memory consumption in the munin-html process) via
crafted multigraph data.
Munin::Master::Node in Munin before 2.0.18 allows remote attackers to
cause a denial of service (abort data collection for node) via a
plugin that uses 'multigraph' as a multigraph service name.
See also :
Run 'yum update munin' to update your system.
Risk factor :
Medium / CVSS Base Score : 5.0