This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The lighttpd website reports :
In lighttpd 1.3.7 and below it is possible to fetch the source files
which should be handled by CGI or FastCGI applications.
The vulnerability is in the handling of urlencoded trailing NUL bytes.
Installations that do not use CGI or FastCGI are not affected.
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true