Solaris 10 (x86) : 148384-01

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote host is missing Sun Security Patch number 148384-01

Description :

Vulnerability in the Solaris component of Oracle and Sun Systems
Products Suite (subcomponent: Filesystem/NFS). Supported versions that
are affected are 8, 9, 10 and 11. Easily exploitable vulnerability
allows successful unauthenticated network attacks via IPv6. Successful
attack of this vulnerability can result in unauthorized update, insert
or delete access to some Solaris accessible data as well as read
access to a subset of Solaris accessible data. Note: CVE-2013-0405
occurs only when the Solaris NFS client mounts the NFS server over
IPv6.

See also :

https://getupdates.oracle.com/readme/148384-01

Solution :

You should install this patch for your system to be up-to-date.

Risk factor :

Medium / CVSS Base Score : 6.4
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N)

Family: Solaris Local Security Checks

Nessus Plugin ID: 64524 ()

Bugtraq ID:

CVE ID: CVE-2013-0405

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now