Security News > 2020 > November > Mandiant Details Recently Patched Oracle Solaris Zero-Day
FireEye Mandiant has published detailed information on an Oracle Solaris vulnerability that has been exploited in attacks by a sophisticated threat actor.
The flaw allows an unauthenticated attacker to compromise Oracle Solaris systems.
Vulnerable operating systems, Madiant says, include some releases of Solaris 9, all releases of Solaris 10, Solaris 11.0, and Illumos.
Oracle has released patches for Solaris 10 and 11, but not for Solaris 9, which is no longer supported.
For Solaris 9 systems, as well as for the Solaris 10 or 11 servers where patching is inconvenient, modifying the /etc/ssh/sshd config file by adding the lines ChallengeResponseAuthentication no and KbdInteractiveAuthentication no and restarting the SSH server can be used as a workaround.