Note: This is an archival copy of Security Sun Alert 201636 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1001223.1.
Solaris 9 Operating System
Solaris 8 Operating System
Date of Resolved Release
A local unprivileged user may be able to gain unauthorized root privileges due to a security issue involving the passwd(1) command.
Sun acknowledges, with thanks, Tim Wort of Inkling Research Inc. for contacting us regarding this issue.
This issue can occur in the following releases:
Note: Solaris 7 is not affected by this issue.
There are no reliable symptoms that would show the described issue has been exploited to gain unauthorized elevated privileges to a host.
There is no workaround for this issue.
This issue is addressed in the following releases:
This solution has no attachment