This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
The Gaim Security Issues page documents a problem with installing
smiley themes from an untrusted source :
To install a new smiley theme, a user can drag a tarball from a
graphical file manager, or a hypertext link to one from a web browser.
When a tarball is dragged, Gaim executes a shell command to untar it.
However, it does not escape the filename before sending it to the
shell. Thus, a specially crafted filename could execute arbitrary
commands if the user could be convinced to drag a file into the smiley
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5