This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Security Fix(es) :
- It was found that a flaw in Apache groovy library allows
remote code execution wherever deserialization occurs in
the application. It is possible for an attacker to craft
a special serialized object that will execute code
directly when deserialized. All applications which rely
on serialization and do not isolate the code which
deserializes objects are subject to this vulnerability.
See also :
Update the affected groovy and / or groovy-javadoc packages.
Risk factor :