The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. SOAPpy: XML External Entity (XXE) flaw (CVE-2014-3242) SOAPpy 0.12.5 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted SOAP request containing a large number of nested entity references. (CVE-2014-3243) Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is…Read More