COMMAND

    volrmmount

SYSTEMS AFFECTED

    SunOS 5.6 (sparc and x86)

PROBLEM

    The volrmmount(1) program is a setuid program that allows users to
    simulate  an  insertion   or  ejection  of   removable  media.   A
    vulnerability  has  been  discovered  in  volrmount that may allow
    attackers, if exploited, to view  any file on the system  and also
    to gain root access. Credits goes to Marko Laakso.

SOLUTION

    The  following  patches  are  available  in  relation to the above
    problem:

        OS version          Patch ID
        __________          ________
        SunOS 5.6           105407-01
        SunOS 5.6_x86       105408-01