The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://www.mozilla.org/security/announce/2010/mfsa2010-08.html http://www.vuxml.org/freebsd/5d5ed535-3653-11df-9edc-000f20797ede.html

The following package is affected: firefox CVE-2010-1028 Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vd_ff module in VulnDisco 9.0.