Solaris 10 (x86) : 119214-27 (BEAST)

medium Nessus Plugin ID 107811

Synopsis

The remote host is missing Sun Security Patch number 119214-27

Description

NSS_NSPR_JSS 3.13.1_x86: NSPR 4.8.9 / NSS 3.13.1 / JSS 4.3.2.
Date this patch was last updated by Sun : Feb/08/12

Solution

Install patch 119214-27 or higher

See Also

https://getupdates.oracle.com/readme/119214-27

Plugin Details

Severity: Medium

ID: 107811

File Name: solaris10_x86_119214-27.nasl

Version: 1.8

Type: local

Published: 3/12/2018

Updated: 12/5/2022

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P

CVSS Score Source: CVE-2006-7140

Vulnerability Information

CPE: p-cpe:/a:oracle:solaris:10:119214, cpe:/o:oracle:solaris:10

Required KB Items: Host/local_checks_enabled, Host/Solaris/showrev

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/8/2012

Vulnerability Publication Date: 9/5/2006

Exploitable With

CANVAS (CANVAS)

Core Impact

Metasploit (Solaris libnspr NSPR_LOG_FILE Privilege Escalation)

Reference Information

CVE: CVE-2006-4339, CVE-2006-4842, CVE-2006-5201, CVE-2006-7140, CVE-2011-3389

CWE: 310