This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
Fine Free file before 5.17 allows context-dependent attackers to cause
a denial of service (infinite recursion, CPU consumption, and crash)
via a crafted indirect offset value in the magic of a file.
A flaw was found in the way the file utility determined the type of
Portable Executable (PE) format files, the executable format used on
Windows. A malicious PE file could cause the file utility to crash or,
potentially, execute arbitrary code.
The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does
not check return values, which allows remote attackers to cause a
denial of service (application crash) or possibly have unspecified
other impact via invalid imagecrop arguments that lead to use of a
NULL pointer as a return value.
See also :
Run 'yum update php55' to update your system.
Risk factor :
Medium / CVSS Base Score : 6.8