检测

Solaris 10 (sparc):150400-64

medium Nessus 插件 ID 121178

语言:

简介

远程主机缺少 Sun 安全修补程序编号 150400-64

描述

Oracle Sun Systems Products Suite 的 Oracle Solaris 组件中的漏洞(子组件:Kernel)。支持的版本中受影响的是 10 和 11。可轻松利用的漏洞允许未经授权的攻击者登录 Oracle Solaris 执行的基础结构,从而破坏 Oracle Solaris。成功攻击此漏洞可导致对 Oracle Solaris 可访问数据子集进行未经授权的读取访问。Oracle Sun Systems Products Suite 的 Oracle Solaris 组件中的漏洞(子组件:LDoms IO)。支持的版本中受影响的是 10 和 11。可轻松利用的漏洞允许未经授权的攻击者登录 Oracle Solaris 执行的基础结构,从而破坏 Oracle Solaris。成功攻击此漏洞可导致在未经授权的情况下造成 Oracle Solaris 部分拒绝服务(部分 DOS)。

解决方案

安装修补程序 150400-64

另见

https://getupdates.oracle.com/readme/150400-64

插件详情

严重性: Medium

ID: 121178

文件名: solaris10_150400-64.nasl

版本: 1.8

类型: local

发布时间: 2019/1/15

最近更新时间: 2020/1/8

支持的传感器: Nessus

风险信息

VPR

风险因素: Low

分数: 1.4

CVSS v2

风险因素: Low

基本分数: 2.1

矢量: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS 分数来源: CVE-2019-2544

CVSS v3

风险因素: Medium

基本分数: 4

矢量: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

漏洞信息

CPE: p-cpe:/a:oracle:solaris:10:122255, p-cpe:/a:oracle:solaris:10:127980, p-cpe:/a:oracle:solaris:10:137048, p-cpe:/a:oracle:solaris:10:139510, p-cpe:/a:oracle:solaris:10:139944, p-cpe:/a:oracle:solaris:10:142007, p-cpe:/a:oracle:solaris:10:142332, p-cpe:/a:oracle:solaris:10:144540, p-cpe:/a:oracle:solaris:10:146808, p-cpe:/a:oracle:solaris:10:146838, p-cpe:/a:oracle:solaris:10:146848, p-cpe:/a:oracle:solaris:10:147697, p-cpe:/a:oracle:solaris:10:148161, p-cpe:/a:oracle:solaris:10:148174, p-cpe:/a:oracle:solaris:10:148231, p-cpe:/a:oracle:solaris:10:148338, p-cpe:/a:oracle:solaris:10:148553, p-cpe:/a:oracle:solaris:10:148557, p-cpe:/a:oracle:solaris:10:148721, p-cpe:/a:oracle:solaris:10:148730, p-cpe:/a:oracle:solaris:10:148766, p-cpe:/a:oracle:solaris:10:148875, p-cpe:/a:oracle:solaris:10:149502, p-cpe:/a:oracle:solaris:10:149616, p-cpe:/a:oracle:solaris:10:149640, p-cpe:/a:oracle:solaris:10:149642, p-cpe:/a:oracle:solaris:10:149648, p-cpe:/a:oracle:solaris:10:149718, p-cpe:/a:oracle:solaris:10:149729, p-cpe:/a:oracle:solaris:10:150108, p-cpe:/a:oracle:solaris:10:150109, p-cpe:/a:oracle:solaris:10:150115, p-cpe:/a:oracle:solaris:10:150125, p-cpe:/a:oracle:solaris:10:150161, p-cpe:/a:oracle:solaris:10:150169, p-cpe:/a:oracle:solaris:10:150300, p-cpe:/a:oracle:solaris:10:150307, p-cpe:/a:oracle:solaris:10:150311, p-cpe:/a:oracle:solaris:10:150400, p-cpe:/a:oracle:solaris:10:150527, p-cpe:/a:oracle:solaris:10:150531, p-cpe:/a:oracle:solaris:10:150532, p-cpe:/a:oracle:solaris:10:150541, p-cpe:/a:oracle:solaris:10:150627, p-cpe:/a:oracle:solaris:10:150629, p-cpe:/a:oracle:solaris:10:150756, p-cpe:/a:oracle:solaris:10:150760, p-cpe:/a:oracle:solaris:10:150840, p-cpe:/a:oracle:solaris:10:150841, p-cpe:/a:oracle:solaris:10:151145, p-cpe:/a:oracle:solaris:10:151149, p-cpe:/a:oracle:solaris:10:151425, p-cpe:/a:oracle:solaris:10:151608, p-cpe:/a:oracle:solaris:10:152367, p-cpe:/a:oracle:solaris:10:152530, p-cpe:/a:oracle:solaris:10:152539, cpe:/o:oracle:solaris:10

必需的 KB 项: Host/local_checks_enabled, Host/Solaris/showrev

补丁发布日期: 2019/1/14

漏洞发布日期: 2019/1/16

参考资料信息

CVE: CVE-2019-2544, CVE-2019-2545