CVE-2001-1076

Name of the Vulnerable Software and Affected Versions SunOS versions 5.5.1 through 5.8

Description The issue is related to a buffer overflow in the whodo command. This buffer overflow can be triggered by a local user via a long SOR or CFIME environment variable, allowing the execution of arbitrary code.

Recommendations For SunOS versions 5.5.1 through 5.8, consider restricting access to the whodo command until a patch is available. As a temporary workaround, avoid using long SOR or CFIME environment variables to minimize the risk of exploitation.