Sun · Snoop · CVE-2008-0964
**Name of the Vulnerable Software and Affected Versions**
snoop versions on Sun Solaris 8 through 10 and OpenSolaris before snv 96
**Description**
The issue is related to multiple stack-based buffer overflows in the snoop utility. This occurs when the -o option is omitted and a crafted SMB packet is received, allowing remote attackers to execute arbitrary code.
**Recommendations**
For snoop on Sun Solaris 8 through 10 and OpenSolaris before snv 96, consider using the -o option to mitigate the risk of exploitation. As a temporary workaround, restrict access to the snoop utility until a patch is available.