CERT Advisory - March 17, 1994SunOS /usr/ucb/rdist Vulnerability
A security vulnerability exists in /usr/ucb/rdist that can be used to gain unauthorized privileges. Under some circumstances /usr/ucb/rdist can be used to create setuid root programs.
This vulnerability allows a local user to gain root access.
A. If rdist is not being used, change the permissions on the file : # chmod 700 /usr/ucb/rdist
B. Obtain and install the appropriate patches according to the instructions included with the patches.
rdist 100383-06 100383-06.tar.Z