The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://www.gnu.org/software/finger/ http://www.vuxml.org/freebsd/610bc692-a2ad-11dc-900c-000bcdc1757a.html

The following package is affected: gnu-finger CVE-1999-1165 GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a malicious program in the .fingerrc file, or (2) read arbitrary files via symbolic links from .plan, .forward, or .project files.