Detections
Analytics
Oracle Solaris Critical Patch Update : jan2015_SRU11_1_16_5_0
medium Nessus Plugin ID 80938
Language:
Synopsis
The remote Solaris system is missing a security patch from CPU jan2015.Description
This Solaris system is missing necessary patches to address a critical security update :- Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Network).
Supported versions that are affected are 10 and 11.
Easily exploitable vulnerability allows successful unauthenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized read access to a subset of Solaris accessible data.
(CVE-2015-0375)
Solution
Install the jan2015 CPU from the Oracle support website.See Also
https://support.oracle.com/epmos/faces/DocumentDisplay?id=1956176.1
Plugin Details
Severity: Medium
ID: 80938
File Name: solaris_jan2015_SRU11_1_16_5_0.nasl
Version: 1.13
Type: local
Family: Solaris Local Security Checks
Published: 1/23/2015
Updated: 8/11/2022
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 2.5
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
Vulnerability Information
CPE: cpe:/o:oracle:solaris:11.1
Required KB Items: Host/local_checks_enabled, Host/Solaris11/release
Exploit Ease: No known exploits are available
Patch Publication Date: 1/20/2015
Vulnerability Publication Date: 1/21/2015
Reference Information
CVE: CVE-2015-0375
BID: 72153