Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2008-4556

Published: 14/10/2008 Updated: 11/10/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Sun

Vulnerability Summary

Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote malicious users to execute arbitrary code via a crafted request.

Vulnerable Product Search on Vulmon Subscribe to Product

sun solaris 9

sun solaris 8

Exploits

Exploit DB: Solaris sadmind adm_build_path - Remote Buffer Overflow (Metasploit)
## # $Id$ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote include Msf ...
Exploit DB: Solaris 9 (UltraSPARC) - 'sadmind' Remote Code Execution
#!/usr/bin/perl # holygrail2 # #---------------------------------------------------------------------------------# # SunOS 59 [UltraSPARC] sadmind Remote Root Exploit by KingCope in 2008 # # ...
Exploit DB: Sun Solaris sadmind - 'adm_build_path()' Remote Buffer Overflow (Metasploit)
## # $Id: sadmind_adm_build_pathrb 9669 2010-07-03 03:13:45Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...

References

CWE-119http://risesecurity.org/advisories/RISE-2008001.txthttp://www.securityfocus.com/bid/31751http://www.securitytracker.com/id?1021059http://secunia.com/advisories/32283http://osvdb.org/50019http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1http://secunia.com/advisories/32812http://support.avaya.com/elmodocs2/security/ASA-2008-448.htmhttp://securityreason.com/securityalert/4408http://www.vupen.com/english/advisories/2008/2824http://www.vupen.com/english/advisories/2008/3230https://exchange.xforce.ibmcloud.com/vulnerabilities/45858https://www.exploit-db.com/exploits/6786https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543http://www.securityfocus.com/archive/1/497311/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/9920/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook