This script is Copyright (C) 2005-2015 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
Pluf has discovered a vulnerability in Sun Java JDK/SDK, which
potentially can be exploited by malicious people to compromise a
The jar tool does not check properly if the files to be extracted have
the string '../' on its names, so it's possible for an attacker to
create a malicious jar file in order to overwrite arbitrary files
within the filesystem.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 5.0