Oracle Solaris Critical Patch Update : apr2016_SRU11_3_6_5_0
Medium Nessus Plugin ID 90621
SynopsisThe remote Solaris system is missing a security patch from CPU apr2016.
DescriptionThis Solaris system is missing necessary patches to address a critical security update :
- Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Fwflash). The supported version that is affected is 11.3. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Solaris accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Solaris. (CVE-2016-0669)
SolutionInstall the apr2016 CPU from the Oracle support website.