This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-201610-01
(Groovy: Arbitrary code execution)
Groovy’s MethodClosure class, in runtime/MethodClosure.java, is
vulnerable to a crafted serialized object.
Remote attackers could potentially execute arbitrary code, or cause
Denial of Service condition
A workaround exists by using a custom security policy file utilizing the
standard Java security manager, or do not rely on serialization to
See also :
All Groovy users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-java/groovy-2.4.5'
Risk factor :
High / CVSS Base Score : 7.5