This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
A OpenPKG Security Advisory reports :
Triggered by a report to Packet Storm from Virulent, a format string
vulnerability was found in mod_ssl, the Apache SSL/TLS interface to
OpenSSL, version (up to and including) 2.8.18 for Apache 1.3. The
mod_ssl in Apache 2.x is not affected. The vulnerability could be
exploitable if Apache is used as a proxy for HTTPS URLs and the
attacker established a own specially prepared DNS and origin server
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false