Phase:pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users' terminals by modifying the ACL of a TTY.
ReferencesBID:3522 | URL:http://www.securityfocus.com/bid/3522 | SECTRACK:1002732 | URL:http://securitytracker.com/id?1002732 | SECTRACK:1004035 | URL:http://securitytracker.com/id?1004035 | SUNALERT:43929 | URL:http://sunsolve.sun.com/s
Votes:Assigned (Thursday, July 14, 2005)
Comments:None (candidate not yet proposed)
F7: