CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
96.5%
Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple Trend Micro products, allows remote attackers to execute arbitrary code via a crafted ARJ file with long header file names that modify pointers within a structure.
Vendor | Product | Version | CPE |
---|---|---|---|
trend_micro | client-server-messaging_suite_smb | gold | cpe:2.3:a:trend_micro:client-server-messaging_suite_smb:gold:*:windows:*:*:*:*:* |
trend_micro | client-server_suite_smb | gold | cpe:2.3:a:trend_micro:client-server_suite_smb:gold:*:windows:*:*:*:*:* |
trend_micro | control_manager | gold | cpe:2.3:a:trend_micro:control_manager:gold:*:as_400:*:*:*:*:* |
trend_micro | control_manager | gold | cpe:2.3:a:trend_micro:control_manager:gold:*:s_390:*:*:*:*:* |
trend_micro | control_manager | gold | cpe:2.3:a:trend_micro:control_manager:gold:*:solaris:*:*:*:*:* |
trend_micro | control_manager | gold | cpe:2.3:a:trend_micro:control_manager:gold:*:windows:*:*:*:*:* |
trend_micro | control_manager | gold | cpe:2.3:a:trend_micro:control_manager:gold:*:windows_nt:*:*:*:*:* |
trend_micro | control_manager | netware | cpe:2.3:a:trend_micro:control_manager:netware:*:*:*:*:*:*:* |
trend_micro | interscan_emanager | 3.5 | cpe:2.3:a:trend_micro:interscan_emanager:3.5:*:hp:*:*:*:*:* |
trend_micro | interscan_emanager | 3.5.2 | cpe:2.3:a:trend_micro:interscan_emanager:3.5.2:*:windows:*:*:*:*:* |