This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- Multiple integer overflows in audioop.c in the audioop
module in Python 2.6, 2.7, 3.1, and 3.2 allow
context-dependent attackers to cause a denial of service
(application crash) via a large fragment, as
demonstrated by a call to audioop.lin2lin with a long
string in the first argument, leading to a buffer
overflow. NOTE: this vulnerability exists because of an
incorrect fix for CVE-2008-3143.5. (CVE-2010-1634)
See also :
Upgrade to Solaris 11.1.
Risk factor :
Medium / CVSS Base Score : 5.0