COMMAND

    /var/sadm

SYSTEMS AFFECTED

    UnixWare 7

PROBLEM

    Matt Conover posted following (found by ktwo).  When patches/fixes
    are applied  to binaries  on UnixWare  7, the  original, unpatched
    binary files (with  the suid/sgid bits  maintained) are stored  in
    /var/sadm.   By default, the permissions on this directory is 755.
    This  allows  normal  users  to  execute  and exploit old binaries
    leftover from patching.

SOLUTION

    Run 'chmod o-rx /var/sadm' to remove read/execution privileges for
    normal users.