Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0236 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Solaris

9 documents6 sources

Severity

10.0CRITICALNVD

EPSS

69.7%

top 1.33%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

SUN Solaris SUN Sunos

Timeline

PublishedMay 3

Latest updateApr 30

Description

Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDsun/solaris2.6, 7.0, 8.0+2

▶NVDsun/sunos5.7, 5.8+1

Patches

Patch: www.cert.org ↗Patch: www.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-4gq3-xq44-x74x: Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event↗2022-04-30

▶

CVEList

CVE-2001-0236: Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event↗2002-03-09

▶

VulnCheck

sun Solaris Out-of-bounds Write↗2001

▶

💥Exploits & PoCs

Exploit-DB

Solaris 2.6/7.0/8 - snmpXdmid Buffer Overflow (Metasploit)↗2001-03-15

▶

Exploit-DB

Solaris 2.6/7.0/8 - snmpXdmid Buffer Overflow↗2001-03-15

▶

🔍Detection Rules

Suricata

GPL RPC portmap snmpXdmi request TCP↗2010-09-23

▶

Suricata

GPL RPC snmpXdmi overflow attempt TCP↗2010-09-23

▶

Suricata

GPL RPC portmap snmpXdmi request UDP↗2010-09-23

▶