This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
Richard J. Moore reports :
Due to two recent vulnerabilities identified in the built-in image
format handling code, it was decided that this area required further
testing to determine if further issues remained. Fuzzing using
afl-fuzz located a number of issues in the handling of BMP, ICO and
GIF files. The issues exposed included denial of service and buffer
overflows leading to heap corruption. It is possible the latter could
be used to perform remote code execution.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8