Security Hole in the Unix Finger Daemon
On some systems, the finger daemon,
fingerd
, was run under user-id zero (root). In this case a user could make his
.plan
file just to be a link to a read-protected file. Then fingering himself he could access that file.
AL
12 December 1993