This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
The remote OracleVM host is missing a security update.
The remote OracleVM system is missing necessary patches to address
critical security updates :
- fix CVE-2016-0702 - side channel attack on modular
- fix CVE-2016-0705 - double-free in DSA private key
- fix CVE-2016-0797 - heap corruption in BN_hex2bn and
- fix CVE-2015-3197 - SSLv2 ciphersuite enforcement
- disable SSLv2 in the generic TLS method
See also :
Update the affected openssl package.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false