[原文]Unspecified vulnerability in Process File System (procfs) in Sun Solaris 10 allows local users to obtain sensitive information such as process working directories via unknown attack vectors, possibly pwdx.
Solaris Process File System (procfs) File Name Disclosure
Local Access Required
Loss of Confidentiality
Solaris contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered by an unspecified error in "procfs" (Process File System), which may allow a local unprivileged user to have visibility of process working directories for all other system and user processes information resulting in a loss of confidentiality.
Currently, there are no known workarounds or upgrades to correct this issue. However, Sun has released a patch to address this vulnerability.
* Solaris 10 with patch 118822-19 or later
* Solaris 10 with patch 118844-19 or later