rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information.
https://exchange.xforce.ibmcloud.com/vulnerabilities/1782
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/102