Vulnerabilities > CVE-2011-2286 - Remote vulnerability in Oracle Sun Products Suite

047910
CVSS 2.1 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
high complexity
oracle
nessus
NVD
Published: 2011-10-18
Updated: 2011-12-24

Summary

Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote authenticated users to affect availability, related to ZFS.

Vulnerable Configurations

Part Description Count
OS
Oracle
2

Nessus

NASL familySolaris Local Security Checks
NASL idSOLARIS10_144500.NASL
descriptionSunOS 5.10: Solaris kernel patch. Date this patch was last updated by Sun : Aug/04/11 This plugin has been deprecated and either replaced with individual 144500 patch-revision plugins, or deemed non-security related.
last seen2019-02-21
modified2018-07-30
plugin id56430
published2011-10-10
reporterTenable
sourcehttps://www.tenable.com/plugins/index.php?view=single&id=56430
titleSolaris 10 (sparc) : 144500-19 (deprecated)
code
#%NASL_MIN_LEVEL 80502

#
# (C) Tenable Network Security, Inc.
#
# @DEPRECATED@
#
# Disabled on 2018/03/12. Deprecated and either replaced by
# individual patch-revision plugins, or has been deemed a
# non-security advisory.
#
include("compat.inc");

if (description)
{
  script_id(56430);
  script_version("1.8");
  script_cvs_date("Date: 2019/10/25 13:36:27");

  script_cve_id("CVE-2011-2286");

  script_name(english:"Solaris 10 (sparc) : 144500-19 (deprecated)");
  script_summary(english:"Check for patch 144500-19");

  script_set_attribute(
    attribute:"synopsis", 
    value:"This plugin has been deprecated."
  );
  script_set_attribute(
    attribute:"description",
    value:
"SunOS 5.10: Solaris kernel patch.
Date this patch was last updated by Sun : Aug/04/11

This plugin has been deprecated and either replaced with individual
144500 patch-revision plugins, or deemed non-security related."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://getupdates.oracle.com/readme/144500-19"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"n/a"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:S/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/08/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/10/10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2019 Tenable Network Security, Inc.");
  script_family(english:"Solaris Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev");

  exit(0);
}

exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 144500 instead.");

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 50265 CVE ID: CVE-2011-2286 Solaris是Sun Microsystems研发的计算机操作系统,已被Oracle收购。 Oracle Sun产品套装在Solaris的实现上存在远程安全漏洞,可通过NFS协议利用此漏洞影响zfs子组件。 Oracle Sun Solaris 11 Express Oracle Sun Solaris 10 Express 厂商补丁: Oracle ------ Oracle已经为此发布了一个安全公告(cpuoct2011-330135)以及相应补丁: cpuoct2011-330135:Oracle Critical Patch Update Advisory - October 2011 链接:http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
idSSV:23119
last seen2017-11-19
modified2011-10-21
published2011-10-21
reporterRoot
titleOracle Sun Solaris远程安全漏洞(CVE-2011-2286)

References