pkgadd in Sun Solaris 2.5.1 through 8 installs files setuid/setgid root if the pkgmap file contains a ? (question mark) in the (1) mode, (2) owner, or (3) group fields, which allows attackers to elevate privileges.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sunos | Sun | 5.7 | 5.7 |
Sunos | Sun | 5.8 | 5.8 |
Sunos | Sun | 5.5.1 | 5.5.1 |
Solaris | Sun | 2.6 | 2.6 |