Solaris /usr/ucb/ps Process Environment Variable Disclosure
Local Access Required
Loss of Confidentiality
Solaris contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a user runs "/usr/ucb/ps axe", which will disclose other users' environment variables resulting in a loss of confidentiality.
Currently, there are no known workarounds or upgrades to correct this issue. However, the vendor has released a patch to address this vulnerability.