Lucene search
+L

Solaris 10 (x86) : 125953-20

🗓️ 12 Mar 2018 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 33 Views

The remote host is missing Sun Security Patch number 125953-20. Oracle Java Web Console 3.1 for Solaris 10 (x86) was last updated by Sun on May/14/10

Related
Refs
Code
ReporterTitlePublishedViews
Family
CVE
CVE-2008-1286
11 Mar 200817:00
cve
CVE
CVE-2008-5550
12 Dec 200818:13
cve
Cvelist
CVE-2008-1286
11 Mar 200817:00
cvelist
Cvelist
CVE-2008-5550
12 Dec 200818:13
cvelist
EUVD
EUVD-2008-1293
7 Oct 202500:30
euvd
EUVD
EUVD-2008-5525
7 Oct 202500:30
euvd
NVD
CVE-2008-1286
11 Mar 200817:44
nvd
NVD
CVE-2008-5550
12 Dec 200818:30
nvd
Prion
Design/Logic Flaw
11 Mar 200817:44
prion
Prion
Open redirect
12 Dec 200818:30
prion
Rows per page
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text in this plugin was
# extracted from the Oracle SunOS Patch Updates.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(107945);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/10/23");

  script_cve_id("CVE-2008-1286", "CVE-2008-5550");

  script_name(english:"Solaris 10 (x86) : 125953-20");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing Sun Security Patch number 125953-20");
  script_set_attribute(attribute:"description", value:
"Oracle Java Web Console 3.1[_x86].
Date this patch was last updated by Sun : May/14/10");
  script_set_attribute(attribute:"see_also", value:"https://getupdates.oracle.com/readme/125953-20");
  script_set_attribute(attribute:"solution", value:
"Install patch 125953-20");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2008-1286");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/05/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/12");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:solaris:10:125953");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Solaris Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2018-2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("solaris.inc");

showrev = get_kb_item("Host/Solaris/showrev");
if (empty_or_null(showrev)) audit(AUDIT_OS_NOT, "Solaris");
os_ver = pregmatch(pattern:"Release: (\d+.(\d+))", string:showrev);
if (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Solaris");
full_ver = os_ver[1];
os_level = os_ver[2];
if (full_ver != "5.10") audit(AUDIT_OS_NOT, "Solaris 10", "Solaris " + os_level);
package_arch = pregmatch(pattern:"Application architecture: (\w+)", string:showrev);
if (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH);
package_arch = package_arch[1];
if (package_arch != "i386") audit(AUDIT_ARCH_NOT, "i386", package_arch);
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"125953-20", obsoleted_by:"147674-01 ", package:"SUNWmcon", version:"3.0.2,REV=2006.12.08.20.48") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"125953-20", obsoleted_by:"147674-01 ", package:"SUNWmconr", version:"3.0.2,REV=2006.12.08.23.39") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"125953-20", obsoleted_by:"147674-01 ", package:"SUNWmcos", version:"3.0.2,REV=2006.12.08.23.39") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"125953-20", obsoleted_by:"147674-01 ", package:"SUNWmcosx", version:"3.0.2,REV=2006.12.08.23.39") < 0) flag++;
if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"125953-20", obsoleted_by:"147674-01 ", package:"SUNWmctag", version:"3.0.2,REV=2006.12.08.20.48") < 0) flag++;

if (flag) {
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : solaris_get_report()
  );
} else {
  patch_fix = solaris_patch_fix_get();
  if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, "Solaris 10");
  tested = solaris_pkg_tests_get();
  if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  audit(AUDIT_PACKAGE_NOT_INSTALLED, "SUNWmcon / SUNWmconr / SUNWmcos / SUNWmcosx / SUNWmctag");
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

23 Oct 2025 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 27.8
EPSS0.0262
33