The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899 http://www.gentoo.org/security/en/glsa/glsa-200811-03.xml http://www.vuxml.org/freebsd/445ed958-b0d9-11dd-a55e-00163e000016.html

The following package is affected: faad2 CVE-2008-4201 Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file.