source: wwwsecurityfocuscom/bid/826/info
Certain versions of Unixware ship with a version of su(1) which is vulnerable to a buffer overflow attack This attack is possible because su(1) fails to sanity check user supplied data, in this instance a username supplied on the command line Because su(1) is SUID root this attack may result in r ...