By default, when a program causes a segmentation violation or other fatal error, Solaris will write the program's memory contents to a 'core' file on the disk for debugging purposes. These core files may contain sensitive information that could aid attackers in obtaining elevated privileges. When setuid programs are allowed to dump their core files this can leak more sensitive information than typical programs.
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center