This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
When nbsmtp is executed in debug mode, server messages will be printed
to stdout and logged via syslog. Syslog is used insecurely and
user-supplied format characters are directly fed to the syslog
function, which results in a format string vulnerability.
Under some circumstances, an SMTP server may be able to abuse this
vulnerability in order to alter the nbsmtp process and execute
See also :
Update the affected package.
Risk factor :
Family: FreeBSD Local Security Checks
Nessus Plugin ID: 19357 (freebsd_pkg_debbb39cfdb311d9a30d00b0d09acbfc.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now