Sun Solaris Netscape Portable Runtime API Local Privilege Escalation Vulnerability

info
discussion
exploit
solution
references

Sun Solaris Netscape Portable Runtime API Local Privilege Escalation Vulnerability

UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

The following exploits are available:

/data/vulnerabilities/exploits/20471.sh
/data/vulnerabilities/exploits/20471-ctors.sh