BrT

This is all over the place by now: telnet in Solaris 10 has a vulnerability that allows you to login as any user, without even the need of a special exploit tool, just by passing certain options to the telnet command line. I just tested it in my Nexenta box, and it works. Honestly, I hadn’t even noticed that telnet was enabled by default. It really should ship disabled, given that ssh comes installed by default on pretty much every box out there these days.