Oracle Solaris Third-Party Patch Update : apache (cve_2013_4365_buffer_errors)
Medium Nessus Plugin ID 80586
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors. (CVE-2013-4365)
SolutionUpgrade to Solaris 22.214.171.124.0.