CVE-2008-4556

Solaris 9 (UltraSPARC) - 'sadmind' Remote Code Execution

Severity Score

9.8

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.

Desbordamiento de búfer basado en la pila, en la función adm_build_path de sadmind en Solstice AdminSuite de Sun, en Solaris 8 y 9, permite a un atacante remoto ejecutar código de su elección por medio de una petición manipulada.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2008-10-14 CVE Reserved
2008-10-14 CVE Published
2008-10-14 First Exploit
2024-08-07 CVE Updated
2025-04-06 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (17)

URL	Tag	Source
http://osvdb.org/50019	Vdb Entry
http://secunia.com/advisories/32812	Third Party Advisory
http://securityreason.com/securityalert/4408	Third Party Advisory
http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm	X_refsource_confirm
http://www.securityfocus.com/archive/1/497311/100/0/threaded	Mailing List
http://www.securitytracker.com/id?1021059	Vdb Entry
http://www.vupen.com/english/advisories/2008/2824	Vdb Entry
http://www.vupen.com/english/advisories/2008/3230	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/45858	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543	Signature

URL	Date	SRC
https://www.exploit-db.com/exploits/6786	2024-08-07
https://www.exploit-db.com/exploits/9920	2008-10-14
https://www.exploit-db.com/exploits/16325	2010-07-03
http://risesecurity.org/advisories/RISE-2008001.txt	2024-08-07
http://www.securityfocus.com/bid/31751	2024-08-07

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/32283	2018-10-11
http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1	2018-10-11

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sun Search vendor "Sun"		Solaris Search vendor "Sun" for product "Solaris"				8 Search vendor "Sun" for product "Solaris" and version "8"		sparc		Affected
Sun Search vendor "Sun"		Solaris Search vendor "Sun" for product "Solaris"				8 Search vendor "Sun" for product "Solaris" and version "8"		x86		Affected
Sun Search vendor "Sun"		Solaris Search vendor "Sun" for product "Solaris"				9 Search vendor "Sun" for product "Solaris" and version "9"		sparc		Affected
Sun Search vendor "Sun"		Solaris Search vendor "Sun" for product "Solaris"				9 Search vendor "Sun" for product "Solaris" and version "9"		x86		Affected