Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2008-0964

Published: 08/08/2008 Updated: 30/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Opensolaris

Vulnerability Summary

Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote malicious users to execute arbitrary code via a crafted SMB packet.

Vulnerable Product Search on Vulmon Subscribe to Product

sun opensolaris

sun opensolaris build_snv_89

sun opensolaris build_snv_91

sun solaris 8

sun sunos 5.9

sun opensolaris build_snv_13

sun opensolaris build_snv_19

sun solaris 10

sun opensolaris build_snv_01

sun opensolaris build_snv_02

sun opensolaris build_snv_92

sun sunos 5.10

sun solaris 9

sun opensolaris build_snv_22

sun opensolaris build_snv_64

sun opensolaris build_snv_88

sun sunos 5.8

Exploits

Exploit DB: Sun Solaris 10 - snoop(1M) Utility Remote Command Execution
/*********************************************************** * hoagie_snoopc * SUN SOLARIS SNOOP REMOTE EXPLOIT * + Sun Solaris 8/9/10 * + OpenSolaris < snv_96 * * Bug discovered by Gael Delalleau * wwwsecurityfocuscom/bid/30556 * * attack:/exploits# /hoagie_snoop -t 19216801 * hoagie_snoopc - solaris snoop remote * -an ...

References

CWE-119http://sunsolve.sun.com/search/document.do?assetkey=1-26-240101-1http://www.securityfocus.com/bid/30556http://secunia.com/advisories/31386http://secunia.com/advisories/31535http://support.avaya.com/elmodocs2/security/ASA-2008-355.htmhttp://www.securitytracker.com/id?1020633http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=734http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=766935http://www.vupen.com/english/advisories/2008/2311https://exchange.xforce.ibmcloud.com/vulnerabilities/44222https://www.exploit-db.com/exploits/6328https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5318https://nvd.nist.govhttps://www.exploit-db.com/exploits/6328/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook