CVE-2008-0965

Published Aug 8, 2008

Last updated 6 years ago

CVSS info 9.3

Overview

Description: Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-134

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19FE69F8-3726-4B21-9B78-E9920B046564"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:*:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "097D3A0C-8C75-4951-94C7-4C444DE2B0D4"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:*:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8222C41-435E-4017-A8C7-D7AB624A6D05"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE677B04-9FF1-4BE6-A64A-980E9B651F01",
            "versionEndIncluding": "build_snv_95"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65C717D1-2192-415E-AF6F-7F9619A3C98A"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56451D1E-E5F2-473E-8995-94890AD72685"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10F2BBC6-DF15-4DEF-AACF-6F570A23733C"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32C315C7-9204-40DB-9730-4138069679CD"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A19A54E9-403E-4051-A120-D588BE399F4D"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_64:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E8BFE03-135B-4E3E-B993-7C37C0EF2286"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_88:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86003B47-A3DF-4119-85ED-FEEAB4F4F034"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_89:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D43FC1E-E0B3-40AF-BA5E-610559312741"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "449EF9CD-7247-4D80-80B4-15B03F8532A0"
          },
          {
            "criteria": "cpe:2.3:o:sun:opensolaris:build_snv_92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E751068-98F5-4FA1-A61F-3C6F23EF778F"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DBDFD8C-371E-42D2-9635-D8CDD1775984"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2F84D4E-EFE1-4A4F-BB58-E665A9C307A0"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14CFA6D3-A611-4DF0-97AB-C30B79833DFA"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2F5901D-AB91-4F12-BF08-0BC3797833E8"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FBA68F0-4577-46F5-A754-D365B6EFF872"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E79CFAA6-A08A-4C70-A3D9-B02C29A17FF2"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1E585DC-FC74-4BB0-96B7-C00B6DB610DF"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E75493D0-F060-4CBA-8AB0-C4FE8B2A8C9B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References