Solaris whodo Buffer Overflow Vulnerability

The 'whodo' utility shipped with Sun Microsystems' Solaris provides a listing of users online and their activities. It is installed setuid root because it reads from the 'utmp' log as well as from the process table.

'whodo' contains a buffer overflow which can be exploited to gain root privileges.


 

Privacy Statement
Copyright 2010, SecurityFocus