This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The Asterisk project reports :
No size checking is done when setting the user field on a CDR. Thus,
it is possible for someone to use an arbitrarily large string and
write past the end of the user field storage buffer. This allows the
possibility of remote code injection.
See also :
Update the affected package.
Risk factor :
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now