The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host.
2001-12-31T05:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 2.1 (LOW)
AV:L/AC:L/Au:N/C:P/I:N/A:N
3.9
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | sun | solaris | 2.5 | Yes |
| Operating System | sun | solaris | 2.5.1 | Yes |
| Operating System | sun | solaris | 2.6 | Yes |
| Operating System | sun | solaris | 7.0 | Yes |
| Operating System | sun | solaris | 8.0 | Yes |
| Operating System | sun | sunos | - | Yes |
| Operating System | sun | sunos | 5.5 | Yes |
| Operating System | sun | sunos | 5.5 | Yes |
| Operating System | sun | sunos | 5.5.1 | Yes |
| Operating System | sun | sunos | 5.5.1 | Yes |
| Operating System | sun | sunos | 5.6 | Yes |
| Operating System | sun | sunos | 5.6 | Yes |
| Operating System | sun | sunos | 5.7 | Yes |
| Operating System | sun | sunos | 5.7 | Yes |
| Operating System | sun | sunos | 5.8 | Yes |
| Operating System | sun | sunos | 5.8 | Yes |