This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing a security update.
In versions of the xchat IRC client prior to version 1.8.9, xchat does
not filter the response from an IRC server when a /dns query is
executed. xchat resolves hostnames by passing the configured resolver
and hostname to a shell, so an IRC server may return a malicious
response formatted so that arbitrary commands are executed with the
privilege of the user running xchat.
Update the affected xchat package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false