CVE-2007-0882

Name of the Vulnerable Software and Affected Versions: Solaris versions 10 and 11

Description: The issue concerns an argument injection vulnerability in the telnet daemon, where certain client sequences are misinterpreted as valid requests to skip authentication. This allows remote attackers to log into specific accounts without proper authentication.

Recommendations: For Solaris versions 10 and 11, consider disabling the telnet daemon until a patch is available to prevent exploitation of this issue. Restrict access to sensitive accounts, such as the bin account, to minimize the risk of unauthorized access.