Remote Account Enumeration Vulnerability in Sun Solaris and SunOS

Remote Account Enumeration Vulnerability in Sun Solaris and SunOS

CVE-2001-1503 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host.

Learn more about our Cis Benchmark Audit For Oracle Solaris.