This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
Todd Miller reports :
Beginning with sudo version 1.7.0 it has been possible to grant
permission to run a command using a specified group via sudo's -g
option (run as group), if allowed by the sudoers file. A flaw exists
in sudo's password checking logic that allows a user to run a command
with only the group changed without being prompted for a password.
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 4.4