STIGQter: STIG Summary: Solaris 11 SPARC Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The operating system must employ automated mechanisms to prevent program execution in accordance with the organization-defined specifications.

DISA Rule

SV-219971r603267_rule

Vulnerability Number

V-219971

Group Title

SRG-OS-000368

Rule Version

SOL-11.1-020230

Severity

CAT II

CCI(s)

CCI-001764 - The information system prevents program execution in accordance with organization-defined policies regarding software program usage and restrictions, and/or rules authorizing the terms and conditions of software program usage.

Weight

Fix Recommendation

The Software Installation profile is required.

Identify packages installed on the system:

# pkg list

uninstall unauthorized packages:

# pfexec pkg uninstall [ package name]

Check Contents

Identify the packages installed on the system.

# pkg list

Any unauthorized software packages listed in the output are a finding.

Vulnerability Number

V-219971

Documentable

False

Rule Version

SOL-11.1-020230

Severity Override Guidance

Identify the packages installed on the system.

# pkg list

Any unauthorized software packages listed in the output are a finding.

Check Content Reference

Target Key

4022

The operating system must employ automated mechanisms to prevent program execution in accordance with the organization-defined specifications.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments