TrendMicro Control Manger CmdProcessor.exe Stack Buffer Overflow

2012-02-23T01:44:47
ID MSF:EXPLOIT/WINDOWS/MISC/TRENDMICRO_CMDPROCESSOR_ADDTASK
Type metasploit
Reporter Rapid7
Modified 2020-10-02T20:00:37

Description

This module exploits a vulnerability in the CmdProcessor.exe component of Trend Micro Control Manger up to version 5.5. The specific flaw exists within CmdProcessor.exe service running on TCP port 20101. The vulnerable function is the CGenericScheduler::AddTask function of cmdHandlerRedAlertController.dll. When processing a specially crafted IPC packet, controlled data is copied into a 256-byte stack buffer. This can be exploited to execute remote code under the context of the user.