V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2008-0965
CVE
Critical

Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, a…

CVSS
9.3
Critical
EPSS
0.06
p92
Published
2008-01-01
Updated
2008-01-01
Description

Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet.

Tags · CWE
CWE-134
CAPEC-67
CAPEC-135
Affected products
OpensolarisOpensolaris ≤ build_snv_95SolarisSunos
CVSS vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Timeline
2008-01-01
Published
2008-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: M
Medium
Authentication
Au: N
None (N)
Confidentiality Impact
C: C
Complete
Integrity Impact
I: C
Complete
Availability Impact
A: C
Complete
Exploit indicators
EPSS
0.057 · p92
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Sun
SunosSolarisOpensolaris
ProductVendorStatus
opensolaris*Tracked
solaris*Tracked
sunos*Tracked
Source databases
CVE