This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Solaris system is missing a security patch for third-party
The remote Solaris system is missing necessary patches to address
security updates :
- The srtp_add_address function in
epan/dissectors/packet-rtp.c in the RTP dissector in
Wireshark 1.10.x before 1.10.7 does not properly update
SRTP conversation data, which allows remote attackers to
cause a denial of service (application crash) via a
crafted packet. (CVE-2014-2907)
See also :
Upgrade to Solaris 11.2.
Risk factor :
Medium / CVSS Base Score : 4.3