Signature Detail

RPC: Sun Solaris sadmind RPC Request Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the Sun Solaris sadmind service. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.

Extended Description

Sun Solaris is prone to multiple buffer-overflow vulnerabilities because the software fails to perform adequate boundary checks on user-supplied input. Attackers can leverage these issues to execute arbitrary code with superuser privileges. Failed attacks will cause denial-of-service conditions. These issues affect Solaris 8 and 9.

Affected Products

• Avaya CMS Server 14.0
• Avaya CMS Server 14.1
• Nortel Networks CDMA W-NMS-CNM
• Nortel Networks Self-Service - CCSS7
• Nortel Networks Self-Service MPS 100
• Nortel Networks Self-Service MPS 1000
• Nortel Networks Self-Service MPS 500
• Nortel Networks Self-Service Peri Application
• Nortel Networks Self-Service Peri CTX
• Nortel Networks Self-Service Peri Workstation
• Nortel Networks Self-Service Speech Server
• Sun Solaris 8 Sparc
• Sun Solaris 8 X86
• Sun Solaris 9 Sparc
• Sun Solaris 9 X86

References

• BugTraq: 35083
• CVE: CVE-2008-3869
• CVE: CVE-2008-3870