Oracle Solaris Critical Patch Update : jan2015_SRU11_2_6_4_0
Medium Nessus Plugin ID 80941
SynopsisThe remote Solaris system is missing a security patch from CPU jan2015.
DescriptionThis Solaris system is missing necessary patches to address a critical security update :
- Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: KSSL). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows successful unauthenticated network attacks via SSL/TLS. Successful attack of this vulnerability can result in unauthorized read access to a subset of Solaris accessible data. (CVE-2014-6481)
SolutionInstall the jan2015 CPU from the Oracle support website.