CVE-2020-2771 – Heap-based buffer overflow in Solaris whodo and w commands

A difficult to exploit heap-based buffer overflow in setuid root whodo and w binaries distributed with Solaris allows local users to corrupt memory and potentially execute arbitrary code in order to escalate privileges.

https://github.com/0xdea/advisories/blob/master/2020-07-solaris-whodo-w.txt

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2771