This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- ppm2tiff does not check the return value of the
TIFFScanlineSize function, which allows remote attackers
to cause a denial of service (crash) and possibly
execute arbitrary code via a crafted PPM image that
triggers an integer overflow, a zero-memory allocation,
and a heap-based buffer overflow. (CVE-2012-4564)
See also :
Upgrade to Solaris 220.127.116.11.0.
Risk factor :
Medium / CVSS Base Score : 6.8