This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- Multiple integer overflows in tiff_getimage.c in LibTIFF
3.9.4 allow remote attackers to execute arbitrary code
via a crafted tile size in a TIFF file, which is not
properly handled by the (1) gtTileSeparate or (2)
gtStripSeparate function, leading to a heap-based buffer
See also :
Upgrade to Solaris 11/11 SRU 8.5.
Risk factor :
Medium / CVSS Base Score : 6.8