Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Sun Solaris Vulnerability

(CVE-2008-3869, CVE-2008-3870)

An integer overflow vulnerability has been reported in the sadmind service in the Sun Solaris operating system. A remote, unauthenticated attacker can leverage this vulnerability by sending a crafted RPC message to the target host, potentially injecting and executing arbitrary code.

Sadmind is a daemon used to control servers running the Sun Solaris operating system. The vulnerability resides in the calculation of the buffer allocation size while parsing specially crafted RPC requests. This can be exploited to cause a heap-based buffer overflow via a specially crafted RPC request, allowing the injection and execution of arbitrary code.

Check Point provides protection against attacks using this vulnerability through the IPS Software Blade, SmartDefense, and IPS-1. This protection will detect and block RPC requests to the sadmind program that contain certain invalid header values. For more information, see CPAI-2009-093.