This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- The RPC code generator in Samba 3.x before 3.4.16, 3.5.x
before 3.5.14, and 3.6.x before 3.6.4 does not implement
validation of an array length in a manner consistent
with validation of array memory allocation, which allows
remote attackers to execute arbitrary code via a crafted
RPC call. (CVE-2012-1182)
See also :
Upgrade to Solaris 11/11 SRU 7.5.
Risk factor :
Critical / CVSS Base Score : 10.0
Public Exploit Available : true