This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- ISC BIND 9.x before 9.7.6-P1, 9.8.x before 9.8.3-P1,
9.9.x before 9.9.1-P1, and 9.4-ESV and 9.6-ESV before
9.6-ESV-R7-P1 does not properly handle resource records
with a zero-length RDATA section, which allows remote
DNS servers to cause a denial of service (daemon crash
or data corruption) or obtain sensitive information from
process memory via a crafted record. (CVE-2012-1667)
See also :
Upgrade to Solaris 11/11 SRU 9.5.
Risk factor :
High / CVSS Base Score : 8.5