This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The uim developers reports :
Takumi ASAKI discovered that uim always trusts environment variables.
But this is not correct behavior, sometimes environment variables
shouldn't be trusted. This bug causes privilege escalation when libuim
is linked against setuid/setgid application. Since GTK+ prohibits
setuid/setgid applications, the bug appears only in 'immodule for Qt'
enabled Qt. (Normal Qt is also safe.)
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 4.6
CVSS Temporal Score : 3.4
Public Exploit Available : false