RPC: Sun Solstice AdminSuite sadmind service adm_build_path Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Solstice AdminSuite's sadmind. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Sun Solstice AdminSuite is prone to a remote stack-based buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied input. Attackers can leverage this issue to execute arbitrary code in the context of the application. Successful exploits will compromise the application and the underlying computer. Failed attacks will cause denial-of-service conditions. We don't know which specific versions of Solstice AdminSuite are affected, but versions for Solaris 8 and 9 are reported vulnerable. We will update this BID as more information emerges.
Affected Products
Nortel_networks self-service_speech_server,Sun solaris
Short Name
RPC:SUN-SOLARIS-SADMIND-ADM
Severity
Major
Recommended
False
Recommended Action
Drop
Category
RPC
Keywords
AdminSuite Buffer CVE-2008-4556 Overflow Solstice Sun adm_build_path bid:31751 sadmind service
Release Date
02/28/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
UDP/33050
False Positive
Unknown
Vendors
Sun
Avaya
Nortel_networks
CVSS Score
10.0