10

CVE-2008-3870

Integer overflow in sadmind in Sun Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted RPC request that triggers a heap-based buffer overflow, related to improper memory allocation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunSolaris Version8.0 Editionsparc
SunSolaris Version8.0 Editionx86
SunSolaris Version9.0 Editionsparc
SunSolaris Version9.0 Editionx86
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.8% 0.939
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/32473
Vendor Advisory
http://secunia.com/advisories/35191
http://sunsolve.sun.com/search/document.do?assetkey=1-21-116455-02-1
Patch
Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259468-1
Patch
Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2009-195.htm
http://www.securityfocus.com/bid/35083
http://www.securitytracker.com/id?1022275
http://www.vupen.com/english/advisories/2009/1409
http://secunia.com/secunia_research/2008-47/
Vendor Advisory
http://www.osvdb.org/54668
http://www.securityfocus.com/archive/1/503772/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/50706
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6092