This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- Apache Tomcat 6.0.30 through 6.0.33 and 7.x before
7.0.22 does not properly perform certain caching and
recycling operations involving request objects, which
allows remote attackers to obtain unintended read access
to IP address and HTTP header information in
opportunistic circumstances by reading TCP data.
See also :
Upgrade to Solaris 11/11 SRU 04.
Risk factor :
Medium / CVSS Base Score : 5.0