This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- ** DISPUTED ** Apache Tomcat 7.x uses world-readable
permissions for the log directory and its files, which
might allow local users to obtain sensitive information
by reading a file. NOTE: One Tomcat distributor has
stated 'The tomcat log directory does not contain any
sensitive information.' (CVE-2013-0346)
See also :
Upgrade to Solaris 11.2.
Risk factor :
Low / CVSS Base Score : 2.1