This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- Buffer overflow in libtelnet/encrypt.c in telnetd in
FreeBSD 7.3 through 9.0, MIT Kerberos Version 5
Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal
1.5.1 and earlier, GNU inetutils, and possibly other
products allows remote attackers to execute arbitrary
code via a long encryption key, as exploited in the wild
in December 2011. (CVE-2011-4862)
See also :
Upgrade to Solaris 11/11 SRU 04.
Risk factor :
Critical / CVSS Base Score : 10.0
Public Exploit Available : true