This is a serious overlook in something so trivial. Just check out this publicly released code on packetstorm and how little is needed to become any user on that system!
#!/bin/sh
# CLASSIFIED CONFIDENTIAL SOURCE MATERIAL
#
# *********************ATTENTION********************************
# THIS CODE _MUST NOT_ BE DISCLOSED TO ANY THIRD PARTIES
# (C) COPYRIGHT Kingcope, 2007
#
################################################################
echo “”
echo “SunOS 5.10/5.11 in.telnetd Remote Exploit [...]

Categories: exploits · security