cisco-sa-20020410-solaris-bin-login · NA · Published · Updated
This advisory describes a vulnerability that affects Cisco products and applications that are installed on the Solaris operating system, and is based on the vulnerability of an common service within the Solaris operating system, not due to a defect of the Cisco product or application. A vulnerability in the "/bin/login" program was discovered that enables an attacker to execute arbitrary code under Solaris OS. This vulnerability was discovered and publicly announced by Internet Security Systems Inc. All Cisco products and applications that are installed on Solaris OS are considered vulnerable to the underlying operating system vulnerability, unless steps have been taken to disable access services such as "bin/login." We are investigating other Solaris-based products. This vulnerability can be mitigated in many cases (not all), by limiting interactive logins to trusted hosts using access control list (ACL) or other mechanisms such as firewalls. This advisory is available at the https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020410-solaris-bin-login.