A buffer overflow vulnerability has been identified in mibiisa. The vulnerability is due to an unsafe memory copy operation. Packet fields of excessive length relayed to mibiisa may corrupt the process stack. An attacker may craft a request to overwrite the return address of the affected stack frame with an arbitrary value.
Remote: Yes
Exploit: No
Solution: A workaround is to disable the mibiisa service. After disabling the service, administrators should terminate it if it is currently running.
Sun has released fixes:
Sun Solaris 2.6 _x86:
Sun Patch 106872-18
Sun Solaris 2.6:
Sun Patch 106787-18
Sun Solaris 7.0 _x86:
Sun Patch 107710-19
Sun Solaris 7.0:
Sun Patch 107709-19
Sun Solaris 8.0 _x86:
Sun Patch 108870-16
Sun Solaris 8.0:
Sun Patch 108869-16
Source: http://www.xatrix.org/article1595.html