Solaris 10 (sparc) : 148975-01

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote host is missing Sun Security Patch number 148975-01

Description :

Vulnerability in the Solaris component of Oracle and Sun Systems
Products Suite (subcomponent: Utility/Remote Execution
Server(in.rexecd)). Supported versions that are affected are 8, 9, 10
and 11. Easily exploitable vulnerability allows successful
unauthenticated network attacks via TCP/IP. Successful attack of this
vulnerability can result in unauthorized read access to a subset of
Solaris accessible data.

See also :

https://getupdates.oracle.com/readme/148975-01

Solution :

You should install this patch for your system to be up-to-date.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
CVSS Temporal Score : 3.7
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Solaris Local Security Checks

Nessus Plugin ID: 64610 ()

Bugtraq ID: 61250

CVE ID: CVE-2013-0398

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now