CVE-2007-4310 Information

Description

The finger daemon (in.fingerd) in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit as demonstrated by a \finger 9@host\ command a different vulnerability than CVE-2001-1503.

Reference

http://securityreason.com/securityalert/2996 http://www.securityfocus.com/archive/1/474858/100/100/threaded http://www.securityfocus.com/archive/1/474927/100/100/threaded