NMRC Advisory #21 - The inJoin Directory Server v4.0 for Solaris 2.8 has a vulnerability in the iCon admin interface listening on tcp port 1500 which allows an attacker with the correct username and password to read any file accessible to the ids user. Exploit URLs included. Fix available here.
6eede2a2c8e66f0b5f7073fa9ba6f676e7b5fbe09f3603da7f67b73d7fa26a17