CVE-1999-1318 Information

Description

/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.) which allows local users to gain privileges via Trojan horse programs.

Reference

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fpatches2F100630&zone_32=1121932A20 http://www.iss.net/security_center/static/7480.php