This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
Flaws in portsnap's verification of downloaded tar files allows
additional files to be included without causing the verification to
fail. Portsnap may then use or execute these files. Impact : An
attacker who can conduct man in the middle attack on the network at
the time when portsnap is run can cause portsnap to execute arbitrary
commands under the credentials of the user who runs portsnap,
See also :
Update the affected packages.
Risk factor :
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now