This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.
The remote OracleVM host is missing a security update.
The remote OracleVM system is missing necessary patches to address
critical security updates :
- Fix CVE-2014-4877 wget: FTP symlink arbitrary filesystem
- Fix the parsing of weblink when doing recursive
- Fix errors found by static analysis of source code
- Add SNI (Server Name Indication) support (#909604)
- Add --trust-server-names option to fix CVE-2010-2252
- Fix wget to recognize certificates with alternative
See also :
Update the affected wget package.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true