Solaris 8 is an older version of the Solaris operating system. This vulnerability allows local users to gain root privileges by exploiting a buffer overflow in the ufsrestore function. The real-world risk lies in the potential for unauthorized access to sensitive data and system configuration.
You're affected if you use Solaris 8 versions 1.4 or earlier.
Check with: find / -name "ufsrestore" 2>/dev/null
Note: This is an older operating system, so it's unlikely that many systems are still running this version.
Upgrade to a supported version of Solaris (version 9 or later).
- Immediate mitigations:
- Restrict network access to your Solaris instance (firewall it from the public internet)
- Audit system logs for suspicious activity