Solaris 10 (x86) : 124394-12

This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.


Synopsis :

The remote host is missing Sun Security Patch number 124394-12

Description :

Vulnerability in the Solaris component of Oracle Sun Systems Products
Suite (subcomponent: CDE Calendar). Supported versions that are
affected are 10 and 11. Easily exploitable vulnerability allows
unauthenticated attacker with network access via TCP to compromise
Solaris. Successful attacks of this vulnerability can result in
takeover of Solaris. Note: CVE-2017-3632 is assigned to the
'EASYSTREET' vulnerability.

See also :

https://getupdates.oracle.com/readme/124394-12

Solution :

You should install this patch for your system to be up-to-date.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Solaris Local Security Checks

Nessus Plugin ID: 71822 ()

Bugtraq ID:

CVE ID: CVE-2017-3632

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now