This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- Heap-based buffer overflow in the proxy_connect function
in src/client.c in CVS 1.11 and 1.12 allows remote HTTP
proxy servers to cause a denial of service (crash) and
possibly execute arbitrary code via a crafted HTTP
See also :
Upgrade to Solaris 11.2.
Risk factor :
Critical / CVSS Base Score : 10.0