cvelistv5 - CVE-2008-4556

CVE-2008-4556 (GCVE-0-2008-4556)

Vulnerability from cvelistv5 – Published: 2008-10-14 22:00 – Updated: 2024-08-07 10:17

Summary

Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.vupen.com/english/advisories/2008/2824	vdb-entryx_refsource_VUPEN
	http://secunia.com/advisories/32283	third-party-advisoryx_refsource_SECUNIA
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://sunsolve.sun.com/search/document.do?assetk…	vendor-advisoryx_refsource_SUNALERT
	https://www.exploit-db.com/exploits/6786	exploitx_refsource_EXPLOIT-DB
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://support.avaya.com/elmodocs2/security/ASA-2…	x_refsource_CONFIRM
	http://www.securitytracker.com/id?1021059	vdb-entryx_refsource_SECTRACK
	http://www.securityfocus.com/bid/31751	vdb-entryx_refsource_BID
	http://risesecurity.org/advisories/RISE-2008001.txt	x_refsource_MISC
	http://osvdb.org/50019	vdb-entryx_refsource_OSVDB
	http://securityreason.com/securityalert/4408	third-party-advisoryx_refsource_SREASON
	http://www.securityfocus.com/archive/1/497311/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/32812	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2008/3230	vdb-entryx_refsource_VUPEN

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T10:17:09.837Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2008-2824",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/2824"
          },
          {
            "name": "32283",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/32283"
          },
          {
            "name": "sunsolstice-adminsuite-admbuildpath-bo(45858)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
          },
          {
            "name": "245806",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUNALERT",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
          },
          {
            "name": "6786",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/6786"
          },
          {
            "name": "oval:org.mitre.oval:def:5543",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
          },
          {
            "name": "1021059",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1021059"
          },
          {
            "name": "31751",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/31751"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
          },
          {
            "name": "50019",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/50019"
          },
          {
            "name": "4408",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/4408"
          },
          {
            "name": "20081014 [RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path()Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
          },
          {
            "name": "32812",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/32812"
          },
          {
            "name": "ADV-2008-3230",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/3230"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-10-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-11T19:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "ADV-2008-2824",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/2824"
        },
        {
          "name": "32283",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/32283"
        },
        {
          "name": "sunsolstice-adminsuite-admbuildpath-bo(45858)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
        },
        {
          "name": "245806",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUNALERT"
          ],
          "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
        },
        {
          "name": "6786",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/6786"
        },
        {
          "name": "oval:org.mitre.oval:def:5543",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
        },
        {
          "name": "1021059",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1021059"
        },
        {
          "name": "31751",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/31751"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
        },
        {
          "name": "50019",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/50019"
        },
        {
          "name": "4408",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/4408"
        },
        {
          "name": "20081014 [RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path()Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
        },
        {
          "name": "32812",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/32812"
        },
        {
          "name": "ADV-2008-3230",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/3230"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2008-4556",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "ADV-2008-2824",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/2824"
            },
            {
              "name": "32283",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/32283"
            },
            {
              "name": "sunsolstice-adminsuite-admbuildpath-bo(45858)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
            },
            {
              "name": "245806",
              "refsource": "SUNALERT",
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
            },
            {
              "name": "6786",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/6786"
            },
            {
              "name": "oval:org.mitre.oval:def:5543",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
            },
            {
              "name": "1021059",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1021059"
            },
            {
              "name": "31751",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/31751"
            },
            {
              "name": "http://risesecurity.org/advisories/RISE-2008001.txt",
              "refsource": "MISC",
              "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
            },
            {
              "name": "50019",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/50019"
            },
            {
              "name": "4408",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/4408"
            },
            {
              "name": "20081014 [RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path()Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
            },
            {
              "name": "32812",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/32812"
            },
            {
              "name": "ADV-2008-3230",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/3230"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2008-4556",
    "datePublished": "2008-10-14T22:00:00",
    "dateReserved": "2008-10-14T00:00:00",
    "dateUpdated": "2024-08-07T10:17:09.837Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*\", \"matchCriteriaId\": \"6DBDFD8C-371E-42D2-9635-D8CDD1775984\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*\", \"matchCriteriaId\": \"E2F84D4E-EFE1-4A4F-BB58-E665A9C307A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*\", \"matchCriteriaId\": \"14CFA6D3-A611-4DF0-97AB-C30B79833DFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*\", \"matchCriteriaId\": \"F2F5901D-AB91-4F12-BF08-0BC3797833E8\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer basado en la pila, en la funci\\u00f3n adm_build_path de sadmind en Solstice AdminSuite de Sun, en Solaris 8 y 9, permite a un atacante remoto ejecutar c\\u00f3digo de su elecci\\u00f3n por medio de una petici\\u00f3n manipulada.\"}]",
      "id": "CVE-2008-4556",
      "lastModified": "2024-11-21T00:51:58.207",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2008-10-14T22:36:58.633",
      "references": "[{\"url\": \"http://osvdb.org/50019\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://risesecurity.org/advisories/RISE-2008001.txt\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://secunia.com/advisories/32283\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/32812\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securityreason.com/securityalert/4408\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/497311/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/31751\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.securitytracker.com/id?1021059\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2824\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/3230\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/45858\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.exploit-db.com/exploits/6786\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://osvdb.org/50019\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://risesecurity.org/advisories/RISE-2008001.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://secunia.com/advisories/32283\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/32812\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securityreason.com/securityalert/4408\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/497311/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/31751\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.securitytracker.com/id?1021059\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2824\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/3230\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/45858\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.exploit-db.com/exploits/6786\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2008-4556\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2008-10-14T22:36:58.633\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer basado en la pila, en la funci\u00f3n adm_build_path de sadmind en Solstice AdminSuite de Sun, en Solaris 8 y 9, permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n por medio de una petici\u00f3n manipulada.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*\",\"matchCriteriaId\":\"6DBDFD8C-371E-42D2-9635-D8CDD1775984\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*\",\"matchCriteriaId\":\"E2F84D4E-EFE1-4A4F-BB58-E665A9C307A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*\",\"matchCriteriaId\":\"14CFA6D3-A611-4DF0-97AB-C30B79833DFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*\",\"matchCriteriaId\":\"F2F5901D-AB91-4F12-BF08-0BC3797833E8\"}]}]}],\"references\":[{\"url\":\"http://osvdb.org/50019\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://risesecurity.org/advisories/RISE-2008001.txt\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/32283\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/32812\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securityreason.com/securityalert/4408\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/497311/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/31751\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.securitytracker.com/id?1021059\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2824\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/3230\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/45858\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.exploit-db.com/exploits/6786\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/50019\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://risesecurity.org/advisories/RISE-2008001.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/32283\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/32812\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securityreason.com/securityalert/4408\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/497311/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/31751\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.securitytracker.com/id?1021059\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2824\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/3230\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/45858\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.exploit-db.com/exploits/6786\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

CERTA-2008-ALE-013

Vulnerability from certfr_alerte - Published: - Updated:

Une vulnérabilité dans le service sadmind de Sun Solaris permet à un utilisateur distant d'exécuter du code arbitraire.

Description

Le service sadmind sur Sun Solaris permet l'administration de systèmes à distance via la suite d'outils Solstice AdminSuite.

Ce service est activé par défaut sous Solaris et est mis en œuvre par le biais du « super-service » inetd fonctionnant avec les privilèges de l'administrateur root.

Une erreur de type débordement de mémoire présente dans sadmind permet à un utilisateur malintentionné distant d'exécuter du code arbitraire sur le système vulnérable.

Contournement provisoire

Dans la mesure où l'exécution du service sadmind est contrôlée par le « super-service » inetd, il est possible de le désactiver en mettant en commentaire la ligne suivante dans le fichier /etc/inetd.conf :

100232 tli rpc/udp wait root /usr/sbin/sadmind.

Une fois cette ligne commentée, il faudra également demander au service inetd de relire sa configuration en tapant la commande :

pkill -HUP inetd

Si, toutefois, ce service devait être utilisé et ne pouvait être désactivé, il conviendrait d'en limiter l'accès aux seules machines de confiance nécessaires à l'administration.

Solution

Correctifs adressant cette vulnérabilité :

Sun Solaris 8 avec le correctif 116455-02 pour SPARC
Sun Solaris 9 avec le correctif 116453-03 pour SPARC
Sun Solaris 8 avec le correctif 116442-02 pour x86
Sun Solaris 9 avec le correctif 116454-03 pour x86

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Sun Solaris 9 pour architecture x86.
N/A	N/A	Sun Solaris 9 pour architecture SPARC ;
N/A	N/A	Sun Solaris 8 pour architecture SPARC ;
N/A	N/A	Sun Solaris 8 pour architecture x86 ;

References

Title

Publication Time

Tags

Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14 octobre 2008	None	vendor-advisory
Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14 octobre 2008 :	-	other
Alerte de sécurité Oracle Sun 245806 du 21 mai 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Sun Solaris 9 pour architecture x86.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sun Solaris 9 pour architecture SPARC ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sun Solaris 8 pour architecture SPARC ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sun Solaris 8 pour architecture x86 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "closed_at": "2013-02-21",
  "content": "## Description\n\nLe service sadmind sur Sun Solaris permet l\u0027administration de syst\u00e8mes \u00e0\ndistance via la suite d\u0027outils Solstice AdminSuite.\n\nCe service est activ\u00e9 par d\u00e9faut sous Solaris et est mis en \u0153uvre par le\nbiais du \u00ab super-service \u00bb inetd fonctionnant avec les privil\u00e8ges de\nl\u0027administrateur root.\n\nUne erreur de type d\u00e9bordement de m\u00e9moire pr\u00e9sente dans sadmind permet \u00e0\nun utilisateur malintentionn\u00e9 distant d\u0027ex\u00e9cuter du code arbitraire sur\nle syst\u00e8me vuln\u00e9rable.\n\n## Contournement provisoire\n\nDans la mesure o\u00f9 l\u0027ex\u00e9cution du service sadmind est contr\u00f4l\u00e9e par le \u00ab\nsuper-service \u00bb inetd, il est possible de le d\u00e9sactiver en mettant en\ncommentaire la ligne suivante dans le fichier /etc/inetd.conf :\n\n100232 tli rpc/udp wait root /usr/sbin/sadmind.\n\nUne fois cette ligne comment\u00e9e, il faudra \u00e9galement demander au service\ninetd de relire sa configuration en tapant la commande :\n\npkill -HUP inetd\n\nSi, toutefois, ce service devait \u00eatre utilis\u00e9 et ne pouvait \u00eatre\nd\u00e9sactiv\u00e9, il conviendrait d\u0027en limiter l\u0027acc\u00e8s aux seules machines de\nconfiance n\u00e9cessaires \u00e0 l\u0027administration.\n\n## Solution\n\nCorrectifs adressant cette vuln\u00e9rabilit\u00e9 :\n\n-   Sun Solaris 8 avec le correctif 116455-02 pour SPARC\n-   Sun Solaris 9 avec le correctif 116453-03 pour SPARC\n-   Sun Solaris 8 avec le correctif 116442-02 pour x86\n-   Sun Solaris 9 avec le correctif 116454-03 pour x86\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-4556",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-4556"
    }
  ],
  "links": [
    {
      "title": "Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14    octobre 2008 :",
      "url": "http://www.securityfocus.com/archive/1/archive/1/497311/100/0/threaded"
    },
    {
      "title": "Alerte de s\u00e9curit\u00e9 Oracle Sun 245806 du 21 mai 2009 :",
      "url": "http://download.oracle.com/sunalerts/1019777.1.html"
    }
  ],
  "reference": "CERTA-2008-ALE-013",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-10-17T00:00:00.000000"
    },
    {
      "description": "ajout correctif et fermeture alerte.",
      "revision_date": "2013-02-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans le service \u003cspan class=\"textit\"\u003esadmind\u003c/span\u003e de\nSun Solaris permet \u00e0 un utilisateur distant d\u0027ex\u00e9cuter du code\narbitraire.\n",
  "title": "Vuln\u00e9rabilit\u00e9 du service sadmind de Sun Solaris",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14 octobre 2008",
      "url": null
    }
  ]
}

CERTA-2008-ALE-013

Vulnerability from certfr_alerte - Published: - Updated:

Une vulnérabilité dans le service sadmind de Sun Solaris permet à un utilisateur distant d'exécuter du code arbitraire.

Description

Le service sadmind sur Sun Solaris permet l'administration de systèmes à distance via la suite d'outils Solstice AdminSuite.

Ce service est activé par défaut sous Solaris et est mis en œuvre par le biais du « super-service » inetd fonctionnant avec les privilèges de l'administrateur root.

Une erreur de type débordement de mémoire présente dans sadmind permet à un utilisateur malintentionné distant d'exécuter du code arbitraire sur le système vulnérable.

Contournement provisoire

100232 tli rpc/udp wait root /usr/sbin/sadmind.

Une fois cette ligne commentée, il faudra également demander au service inetd de relire sa configuration en tapant la commande :

pkill -HUP inetd

Si, toutefois, ce service devait être utilisé et ne pouvait être désactivé, il conviendrait d'en limiter l'accès aux seules machines de confiance nécessaires à l'administration.

Solution

Correctifs adressant cette vulnérabilité :

Sun Solaris 8 avec le correctif 116455-02 pour SPARC
Sun Solaris 9 avec le correctif 116453-03 pour SPARC
Sun Solaris 8 avec le correctif 116442-02 pour x86
Sun Solaris 9 avec le correctif 116454-03 pour x86

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Sun Solaris 9 pour architecture x86.
N/A	N/A	Sun Solaris 9 pour architecture SPARC ;
N/A	N/A	Sun Solaris 8 pour architecture SPARC ;
N/A	N/A	Sun Solaris 8 pour architecture x86 ;

References

Title

Publication Time

Tags

Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14 octobre 2008	None	vendor-advisory
Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14 octobre 2008 :	-	other
Alerte de sécurité Oracle Sun 245806 du 21 mai 2009 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Sun Solaris 9 pour architecture x86.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sun Solaris 9 pour architecture SPARC ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sun Solaris 8 pour architecture SPARC ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Sun Solaris 8 pour architecture x86 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "closed_at": "2013-02-21",
  "content": "## Description\n\nLe service sadmind sur Sun Solaris permet l\u0027administration de syst\u00e8mes \u00e0\ndistance via la suite d\u0027outils Solstice AdminSuite.\n\nCe service est activ\u00e9 par d\u00e9faut sous Solaris et est mis en \u0153uvre par le\nbiais du \u00ab super-service \u00bb inetd fonctionnant avec les privil\u00e8ges de\nl\u0027administrateur root.\n\nUne erreur de type d\u00e9bordement de m\u00e9moire pr\u00e9sente dans sadmind permet \u00e0\nun utilisateur malintentionn\u00e9 distant d\u0027ex\u00e9cuter du code arbitraire sur\nle syst\u00e8me vuln\u00e9rable.\n\n## Contournement provisoire\n\nDans la mesure o\u00f9 l\u0027ex\u00e9cution du service sadmind est contr\u00f4l\u00e9e par le \u00ab\nsuper-service \u00bb inetd, il est possible de le d\u00e9sactiver en mettant en\ncommentaire la ligne suivante dans le fichier /etc/inetd.conf :\n\n100232 tli rpc/udp wait root /usr/sbin/sadmind.\n\nUne fois cette ligne comment\u00e9e, il faudra \u00e9galement demander au service\ninetd de relire sa configuration en tapant la commande :\n\npkill -HUP inetd\n\nSi, toutefois, ce service devait \u00eatre utilis\u00e9 et ne pouvait \u00eatre\nd\u00e9sactiv\u00e9, il conviendrait d\u0027en limiter l\u0027acc\u00e8s aux seules machines de\nconfiance n\u00e9cessaires \u00e0 l\u0027administration.\n\n## Solution\n\nCorrectifs adressant cette vuln\u00e9rabilit\u00e9 :\n\n-   Sun Solaris 8 avec le correctif 116455-02 pour SPARC\n-   Sun Solaris 9 avec le correctif 116453-03 pour SPARC\n-   Sun Solaris 8 avec le correctif 116442-02 pour x86\n-   Sun Solaris 9 avec le correctif 116454-03 pour x86\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-4556",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-4556"
    }
  ],
  "links": [
    {
      "title": "Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14    octobre 2008 :",
      "url": "http://www.securityfocus.com/archive/1/archive/1/497311/100/0/threaded"
    },
    {
      "title": "Alerte de s\u00e9curit\u00e9 Oracle Sun 245806 du 21 mai 2009 :",
      "url": "http://download.oracle.com/sunalerts/1019777.1.html"
    }
  ],
  "reference": "CERTA-2008-ALE-013",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-10-17T00:00:00.000000"
    },
    {
      "description": "ajout correctif et fermeture alerte.",
      "revision_date": "2013-02-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans le service \u003cspan class=\"textit\"\u003esadmind\u003c/span\u003e de\nSun Solaris permet \u00e0 un utilisateur distant d\u0027ex\u00e9cuter du code\narbitraire.\n",
  "title": "Vuln\u00e9rabilit\u00e9 du service sadmind de Sun Solaris",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Annonce Bugtraq BUGTRAQ:20081014 [RISE-2008001] du 14 octobre 2008",
      "url": null
    }
  ]
}

FKIE_CVE-2008-4556

Vulnerability from fkie_nvd - Published: 2008-10-14 22:36 - Updated: 2025-04-09 00:30

Severity ?

Summary

Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.

References

URL	Tags
cve@mitre.org	http://osvdb.org/50019
cve@mitre.org	http://risesecurity.org/advisories/RISE-2008001.txt	Exploit
cve@mitre.org	http://secunia.com/advisories/32283	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/32812
cve@mitre.org	http://securityreason.com/securityalert/4408
cve@mitre.org	http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1
cve@mitre.org	http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm
cve@mitre.org	http://www.securityfocus.com/archive/1/497311/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/31751	Exploit
cve@mitre.org	http://www.securitytracker.com/id?1021059
cve@mitre.org	http://www.vupen.com/english/advisories/2008/2824
cve@mitre.org	http://www.vupen.com/english/advisories/2008/3230
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/45858
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543
cve@mitre.org	https://www.exploit-db.com/exploits/6786
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/50019
af854a3a-2127-422b-91ae-364da2661108	http://risesecurity.org/advisories/RISE-2008001.txt	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/32283	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/32812
af854a3a-2127-422b-91ae-364da2661108	http://securityreason.com/securityalert/4408
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1
af854a3a-2127-422b-91ae-364da2661108	http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/497311/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/31751	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1021059
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/2824
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/3230
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/45858
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/6786

Impacted products

Vendor	Product	Version
sun	solaris	8
sun	solaris	8
sun	solaris	9
sun	solaris	9

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*",
              "matchCriteriaId": "6DBDFD8C-371E-42D2-9635-D8CDD1775984",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*",
              "matchCriteriaId": "E2F84D4E-EFE1-4A4F-BB58-E665A9C307A0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*",
              "matchCriteriaId": "14CFA6D3-A611-4DF0-97AB-C30B79833DFA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*",
              "matchCriteriaId": "F2F5901D-AB91-4F12-BF08-0BC3797833E8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en la pila, en la funci\u00f3n adm_build_path de sadmind en Solstice AdminSuite de Sun, en Solaris 8 y 9, permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n por medio de una petici\u00f3n manipulada."
    }
  ],
  "id": "CVE-2008-4556",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2008-10-14T22:36:58.633",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/50019"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/32283"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/32812"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/4408"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/31751"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1021059"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/2824"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/3230"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/6786"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/50019"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/32283"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/32812"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/4408"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/31751"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1021059"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2824"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/3230"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/6786"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-C25G-VX8R-H5GX

Vulnerability from github – Published: 2022-05-02 00:11 – Updated: 2022-05-02 00:11

Details

Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2008-4556"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2008-10-14T22:36:00Z",
    "severity": "HIGH"
  },
  "details": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.",
  "id": "GHSA-c25g-vx8r-h5gx",
  "modified": "2022-05-02T00:11:20Z",
  "published": "2022-05-02T00:11:20Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4556"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/6786"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/50019"
    },
    {
      "type": "WEB",
      "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/32283"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/32812"
    },
    {
      "type": "WEB",
      "url": "http://securityreason.com/securityalert/4408"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/31751"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1021059"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2008/2824"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2008/3230"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2008-4556

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.

Aliases

CVE-2008-4556

Aliases

CVE-2008-4556

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2008-4556",
    "description": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.",
    "id": "GSD-2008-4556",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2008-4556"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2008-4556"
      ],
      "details": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.",
      "id": "GSD-2008-4556",
      "modified": "2023-12-13T01:23:00.248578Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2008-4556",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2008-2824",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2008/2824"
          },
          {
            "name": "32283",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/32283"
          },
          {
            "name": "sunsolstice-adminsuite-admbuildpath-bo(45858)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
          },
          {
            "name": "245806",
            "refsource": "SUNALERT",
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
          },
          {
            "name": "6786",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/6786"
          },
          {
            "name": "oval:org.mitre.oval:def:5543",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
          },
          {
            "name": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm",
            "refsource": "CONFIRM",
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
          },
          {
            "name": "1021059",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1021059"
          },
          {
            "name": "31751",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/31751"
          },
          {
            "name": "http://risesecurity.org/advisories/RISE-2008001.txt",
            "refsource": "MISC",
            "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
          },
          {
            "name": "50019",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/50019"
          },
          {
            "name": "4408",
            "refsource": "SREASON",
            "url": "http://securityreason.com/securityalert/4408"
          },
          {
            "name": "20081014 [RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path()Buffer Overflow Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
          },
          {
            "name": "32812",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/32812"
          },
          {
            "name": "ADV-2008-3230",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2008/3230"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2008-4556"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://risesecurity.org/advisories/RISE-2008001.txt",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "http://risesecurity.org/advisories/RISE-2008001.txt"
            },
            {
              "name": "31751",
              "refsource": "BID",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.securityfocus.com/bid/31751"
            },
            {
              "name": "1021059",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1021059"
            },
            {
              "name": "32283",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/32283"
            },
            {
              "name": "50019",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/50019"
            },
            {
              "name": "245806",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245806-1"
            },
            {
              "name": "32812",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/32812"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2008-448.htm"
            },
            {
              "name": "4408",
              "refsource": "SREASON",
              "tags": [],
              "url": "http://securityreason.com/securityalert/4408"
            },
            {
              "name": "ADV-2008-2824",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2008/2824"
            },
            {
              "name": "ADV-2008-3230",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2008/3230"
            },
            {
              "name": "sunsolstice-adminsuite-admbuildpath-bo(45858)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45858"
            },
            {
              "name": "6786",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "https://www.exploit-db.com/exploits/6786"
            },
            {
              "name": "oval:org.mitre.oval:def:5543",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5543"
            },
            {
              "name": "20081014 [RISE-2008001] Sun Solstice AdminSuite sadmind adm_build_path()Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/497311/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-11T20:52Z",
      "publishedDate": "2008-10-14T22:36Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2008-4556 (GCVE-0-2008-4556)

CERTA-2008-ALE-013

Description

Contournement provisoire

Solution

CERTA-2008-ALE-013

Description

Contournement provisoire

Solution

FKIE_CVE-2008-4556

GHSA-C25G-VX8R-H5GX

GSD-2008-4556

Tags

Sightings

Nomenclature