This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
US-CERT reports :
webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier
allows remote attackers to cause a denial of service (NULL dereference
and daemon crash) via a stats method action to /xml-rpc with (1) an
empty Authorization header line, which triggers a crash in the
ws_decodepassword function; or (2) a header line without a ':'
character, which triggers a crash in the ws_getheaders function.
See also :
Update the affected package.
Risk factor :
High / CVSS Base Score : 7.1