Sun sounds Solaris server security bug siren

Sun Microsystems confessed last week that a bug in versions 2.5 and 2.5.1 of the Solaris operating system leaves workstations and servers open to unauthorised access.

Julian Lomberg, Solaris product marketing manager for Northern Europe, said: 'It is a security flaw, but the user has to have logged on to the system first, so it's not as alarming as it sounds. It would be necessary to physically hack into the system.'

Bug-fixing patches, which can be downloaded from the Net, were released by Sun soon after the loophole was discovered.

The bug fix is being pushed through all Sun's authorised service channels in the UK, but any dealers that have not been briefed on the bug should contact Tplc or Sun Microsystems.