CVE-2008-0964

SUN Opensolaris - Memory Corruption

Title source: rule

Description

Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via a crafted SMB packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Andi · cremotesolaris

https://www.exploit-db.com/exploits/6328

View Code ZIP pw:eip

References (12)

[Vendor Advisory] http://secunia.com/advisories/31386

[Vendor Advisory] http://secunia.com/advisories/31535

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-26-240101-1

[Vendor Advisory] http://support.avaya.com/elmodocs2/security/ASA-2008-355.htm

[Various Sources] http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=766935

[Vendor Advisory] http://www.vupen.com/english/advisories/2008/2311

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/44222

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30556

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/6328

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5318

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1020633

[Third Party Advisory] http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=734

Scores

EPSS 0.2855

EPSS Percentile 96.5%

Details

CWE

CWE-119

Status published

Products (17)

sun/opensolaris (3 CPE variants)

sun/opensolaris build_snv_01

sun/opensolaris build_snv_02

sun/opensolaris build_snv_13

sun/opensolaris build_snv_19

sun/opensolaris build_snv_22

sun/opensolaris build_snv_64

sun/opensolaris build_snv_88

sun/opensolaris build_snv_89

sun/opensolaris build_snv_91

... and 7 more

Published Aug 08, 2008

Tracked Since Feb 18, 2026