rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun sunos 5.7 |
||
sun solaris 7.0 |
||
sun sunos 5.8 |
||
sun solaris 8.0 |
||
sun sunos 5.5.1 |
||
sun solaris 2.5.1 |
||
sun solaris 9.0 |
||
sun solaris 2.6 |
||
sun sunos - |