CVE-2001-1503

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 2.5 through 8 SunOS versions 5.5 through 5.8

Description The issue allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host. This is related to the finger daemon (in.fingerd) in the affected operating systems.

Recommendations For Sun Solaris versions 2.5 through 8, restrict access to the finger daemon to minimize the risk of exploitation. For SunOS versions 5.5 through 5.8, consider disabling the finger daemon until a patch is available.