The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service (resource consumption) by decompressing a large file containing zeroes. (CVE-2016-5004) Note that Nessus relies on the presence of the package as reported by the…Read More