Lucene search

[email protected]CVE-2007-0074

HistoryNov 17, 2008 - 11:30 p.m.

CVE-2007-0074

2008-11-1723:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-0074

buffer overflow

trend micro serverprotect

remote code execution

nvd

security vulnerability

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.078 Low

EPSS

Percentile

94.2%

JSON

Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via unknown vectors, possibly related to a folder read operation over RPC.

Affected configurations

NVD

Node

trend_microserverprotectMatch5.7

trend_microserverprotectMatch5.58

CPENameOperatorVersion
trend_micro:serverprotecttrend micro serverprotecteq5.7
trend_micro:serverprotecttrend micro serverprotecteq5.58

CPE	Name	Operator	Version
trend_micro:serverprotect	trend micro serverprotect	eq	5.7
trend_micro:serverprotect	trend micro serverprotect	eq	5.58

References

blogs.iss.net/archive/trend.html

secunia.com/advisories/32618

www.iss.net/threats/309.html

www.kb.cert.org/vuls/id/768681

www.securityfocus.com/bid/32261

www.vupen.com/english/advisories/2008/3127

exchange.xforce.ibmcloud.com/vulnerabilities/39051

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.078 Low

EPSS

Percentile

94.2%

JSON

Related for CVE-2007-0074

nvd1 prion1 cvelist1 seebug1 cert1