Lucene search

[email protected]CVE-2009-1435

HistoryApr 27, 2009 - 6:00 p.m.

CVE-2009-1435

2009-04-2718:00:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2009-1435

ntrtscan.exe

trend micro

officescan client

vulnerability

denial of service

application crash

directory pathname

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.8%

JSON

NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1 allows local users to cause a denial of service (application crash) via directories with long pathnames. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

trendmicroofficescanMatch8.0sp1client

CPENameOperatorVersion
trendmicro:officescantrendmicro officescaneq8.0

CPE	Name	Operator	Version
trendmicro:officescan	trendmicro officescan	eq	8.0

References

es.geocities.com/jplopezy/officescan.zip

osvdb.org/53890

secunia.com/advisories/34737

www.securityfocus.com/archive/1/502847/100/0/threaded

www.securityfocus.com/archive/1/502860/100/0/threaded

www.securityfocus.com/bid/34642

www.securitytracker.com/id?1022109

www.vupen.com/english/advisories/2009/1146

Social References

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.8%

JSON

Related for CVE-2009-1435

cvelist1 openvas2 prion1 nvd1