When the ToolTalk Database Server (/usr/openwin/bin/rpc.ttdbserverd) is enabled, remote and local attacks are possible. These attacks can potentially give root access to the system. Attacked systems can be identified by the presence of garbage files in the root directory that begin with an A.
Workaround: Remove the rpc.ttdbserverd line from the inetd.conf file. Disable the service by using the chmod a-x command on /usr/openwin/bin/rpc.ttdbserverd. Check with your Sun representative about future patches.