Note: This is an archival copy of Security Sun Alert 200378 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000268.1.
Solaris 9 Operating System
Common Desktop Environment 1.0
Solaris 2.6 Operating System
Solaris 7 Operating System
Solaris 8 Operating System
Date of Resolved Release
A local user may be able to execute arbitrary code or commands with the privileges of the dtprintinfo(1) CDE Print Viewer. The dtprintinfo(1) CDE Print Viewer runs with root privileges.
This issue can occur in the following releases:
There are no predictable symptoms that show this issue has been exploited.
To work around the described issue, turn off the set-user-ID ("setuid") bit for dtprintinfo as root, shown below:
# chmod 0555 /usr/dt/bin/dtprintinfo
This will cause dtprintinfo to lose the ability to display local print jobs.
This issue is addressed in the following releases:
This solution has no attachment