This script is Copyright (C) 2010-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The cURL project reports in a security advisory :
Using the affected libcurl version to download compressed content over
HTTP, an application can ask libcurl to automatically uncompress data.
When doing so, libcurl can wrongly send data up to 64K in size to the
callback which thus is much larger than the documented maximum size.
An application that blindly trusts libcurl's max limit for a fixed
buffer size or similar is then a possible target for a buffer overflow
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 6.8