Vulnerability CVE-2007-0851


Published: 2007-02-08   Modified: 2012-02-12

Description:
Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable.

Vendor: Trend micro
Product: Serverprotect 
Version:
windows
novell_netware
linux_1.2.0
linux
5.58
5.5.8
5.3.1
Product: Control manager 
Version:
netware
gold
3.5
2.5.0
Product: Client-server-messaging suite smb 
Version: gold;
Product: Interscan webprotect 
Version: gold;
Product: Client-server suite smb 
Version: gold;
Product: Interscan web security suite 
Version: gold;
Product: Interscan viruswall 
Version:
gold
5.1
3.81
3.8.0_build1130
3.7.0_build1190
3.7.0
3.6.5
3.6.0_build_1182
3.6.0_build1166
3.6
3.32
3.3
3.2.3
3.1.0
3.0.1
Product: Scanmail 
Version:
gold
6.1
3.81
3.8
2.6
2.51
1.0.0
Product: Interscan messaging security suite 
Version:
gold
5.5_build_1183
5.5
3.81
Product: Officescan 
Version:
corporate_7.3
corporate_7.0
corporate_6.5
corporate_5.58
corporate_5.5
corporate_5.02
corporate_3.54
corporate_3.5
corporate_3.13
corporate_3.11
corporate_3.1.1
corporate_3.0
7.3
4.5.0
3.0
Product: Interscan viruswall scan engine 
Version: 7.510.0-1002;
Product: Scanning engine 
Version: 7.1.0;
Product: Pc-cillin 
Version:
6.0
2006
2005
2003
2002
2000
Product: Interscan viruswall for windows nt 
Version:
5.1.0
3.6
3.52_build1466
3.52
3.51
3.5
3.4
Product: Interscan emanager 
Version:
3.6
3.51_j
3.51
3.5.2
3.5
Product: Webprotect 
Version: 3.1.0;
Product: Viruswall 
Version: 3.0.1;
Product: Pc-cillin internet security 
Version:
2007
2006_14.10.0.1023
2005_12.0.0_0_build_1244
14_14.00.1485
Product: Interscan webmanager 
Version:
2.1
2.0
1.2
Product: Web security suite 
Version: 1.2.0;
Product: Portalprotect 
Version: 1.2; 1.0;
Product: Scanmail emanager 
Product: Pc cillin - internet security 2006 

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://www.kb.cert.org/vuls/id/276432
http://www.securityfocus.com/bid/22449
http://securitytracker.com/id?1017601
http://secunia.com/advisories/24087
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470
http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289
http://xforce.iss.net/xforce/xfdb/32352
http://www.vupen.com/english/advisories/2007/0569
http://www.vupen.com/english/advisories/2007/0522
http://www.jpcert.or.jp/at/2007/at070004.txt
http://securitytracker.com/id?1017603
http://securitytracker.com/id?1017602
http://secunia.com/advisories/24128
http://osvdb.org/33038
http://jvn.jp/jp/JVN%2377366274/index.html

Related CVE
CVE-2018-6218
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an attacker to run arbitrary code on a vulnerable system.
CVE-2017-6798
Trend Micro Endpoint Sensor 1.6 before b1290 has a DLL hijacking vulnerability that allows remote attackers to execute arbitrary code, aka Trend Micro Vulnerability Identifier 2015-0208.
CVE-2016-6270
The handle_certificate function in /vmi/manager/engine/management/commands/apns_worker.py in Trend Micro Virtual Mobile Infrastructure before 5.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the password...
CVE-2016-6268
Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows local webserv users to execute arbitrary code with root privileges via a Trojan horse .war file in the Solr webapps directory.
CVE-2016-6267
SnmpUtils in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) spare_Community, (2) spare_Al...
CVE-2016-6269
Multiple directory traversal vulnerabilities in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allow remote attackers to read and delete arbitrary files via the tmpfname parameter to (1) lo...
CVE-2016-6266
ccca_ajaxhandler.php in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) host or (2) apikey...
CVE-2016-5840
hotfix_upload.cgi in Trend Micro Deep Discovery Inspector (DDI) 3.7, 3.8 SP1 (3.81), and 3.8 SP2 (3.82) allows remote administrators to execute arbitrary code via shell metacharacters in the filename parameter of the Cotnent-Disposition header.

Copyright 2019, cxsecurity.com

 

Back to Top