This script is Copyright (C) 2006-2017 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200607-11
(TunePimp: Buffer overflow)
Kevin Kofler has reported a vulnerability where three stack variables
are allocated with 255, 255 and 100 bytes respectively, yet 256 bytes
are read into each. This could lead to buffer overflows.
Running an affected version of TunePimp could lead to the execution of
arbitrary code by a remote attacker.
There is no known workaround at this time.
See also :
All tunepimp users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/tunepimp-0.5.'
Risk factor :
Medium / CVSS Base Score : 5.1
CVSS Temporal Score : 5.1
Public Exploit Available : false