Vulnerability in NTP Solaris 11, and you can correct in the following form Network Time Protocol Daemon (ntpd) read_mru_list() Remote DoS [-/+] Synopsis The remote NTP server is affected by a denial of service vulnerability. Description The remote NTP server is affected by a denial of service vulnerability due to improper validation of mrulist queries. An unauthenticated, remote attacker can exploit this, via a specially crafted NTP mrulist query packet, to terminate the ntpd process. Note that the NTP server is reportedly affected by additional vulnerabilities as well; however, Nessus has not tested for these. Solution Upgrade to NTP version 4.2.8p9 or later. Risk Factor High How to fix the issue, you find the steps in order to correct this problem Set in FALSE the Facet Values in order to update and prevent in any other update that version does not change, Now if you want to change them Set in TRUE # pkg change-facet facet.version-loc
The Oracle, Unix and Technology World