users can exploit a vulnerability in the getopt(3) routine inside libc. As most SUID programs in Solaris are dynamically linked, users can gain root privileges.