This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch from CPU
This Solaris system is missing necessary patches to address a critical
security update :
- Vulnerability in the Solaris component of Oracle Sun
Systems Products Suite (subcomponent: iSCSI Data
Mover(IDM)). Supported versions that are affected are 10
and 11. Easily exploitable vulnerability allows
successful unauthenticated network attacks via TCP/IP.
Successful attack of this vulnerability can result in
unauthorized Operating System hang or frequently
repeatable crash (complete DOS). (CVE-2014-6508)
See also :
Install the oct2014 CPU from the Oracle support website.
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.8
Public Exploit Available : false