Hole in Solaris print service allows root access
An update for Sun Microsystems' Solaris operating system fixes a critical vulnerability in its print service. According to a Sun advisory, the hole affects Solaris versions 8, 9 and 10 on SPARC and Intel. It allows remote unprivileged attackers to run arbitrary code as root
or crash the service. Solaris users should update immediately or temporarily disable the print service. The necessary steps for the different versions are described in the advisory.
See also:
Security Vulnerabilities in Solaris Print Service May Lead to Denial of Service (DoS) or Execution of Arbitrary Code, Sun Security Advisory
(mba)