Oracle Solaris Critical Patch Update : jan2013_SRU12_4
Medium Nessus Plugin ID 76809
SynopsisThe remote Solaris system is missing a security patch from CPU jan2013.
DescriptionThis Solaris system is missing necessary patches to address a critical security update :
- Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Kernel/DTrace Framework).
Supported versions that are affected are 10 and 11.
Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System hang or frequently repeatable crash (complete DOS). (CVE-2013-0407)
SolutionInstall the jan2013 CPU from the Oracle support website.