Update Protection against Sun Solstice AdminSuite sadmind service adm_build_path Buffer Overflow Vulnerability
| Check Point Reference: | CPAI-2009-024 | |
| Date Published: | ||
| Severity: | ||
| Source: | Secunia Advisory: SA32283 | |
| Industry Reference(s): | CVE-2008-4556 | |
| Protection Provided by: |
VPN-1
|
|
|
Who is Vulnerable? Sun Microsystems Solaris 8 (x86, SPARC Platform) Sun Microsystems Solaris 9 (x86, SPARC Platform) |
||
| Vulnerability Description Solstice AdminSuite is a set of applications for distributed system administration. sadmind is a daemon used by Solstice AdminSuite to control the servers running Sun Solaris operating system. A stack buffer overflow vulnerability has been reported in Solstice AdminSuite's sadmind. A remote attacker may exploit this issue to execute arbitrary code on an affected system. |
||
|
Vulnerability Details The vulnerability is due to an error in the Solstice AdminSuite's sadmind that fails to properly validate user input when processing RPC requests. A remote attacker may exploit this vulnerability via a specially crafted RPC message sent to the vulnerable host. Successful exploitation may allow execution of arbitrary code on the target system. |
Protection Overview
By enabling this protection, SmartDefense will detect and block malformed SUN-RPC requests sent to the vulnerable service.
In order for the protection to be activated, update your VPN-1/InterSpect product to the latest SmartDefense update. For information on how to update SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.