CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
91.2%
Trend Micro ServerProtect EarthAgent for Windows Management Console 5.58 and possibly earlier versions, when running with Trend Micro Control Manager 2.5 and 3.0, and Damage Cleanup Server 1.1, allows remote attackers to cause a denial of service (CPU consumption) via a flood of crafted packets with a certain “magic value” to port 5005, which also leads to a memory leak.
Vendor | Product | Version | CPE |
---|---|---|---|
trend_micro | serverprotect_earthagent | 5.58 | cpe:2.3:a:trend_micro:serverprotect_earthagent:5.58:*:*:*:*:*:*:* |
kb.trendmicro.com/solutions/search/main/search/solutionDetail.asp?solutionID=25254
secunia.com/advisories/18038
securityreason.com/securityalert/259
securitytracker.com/id?1015358
solutionfile.trendmicro.com/SolutionFile/25254/en/Hotfix_Readme_SPNT5_58_B1137.txt
www.idefense.com/application/poi/display?id=356&type=vulnerabilities
www.osvdb.org/21773
www.securityfocus.com/bid/15868
www.vupen.com/english/advisories/2005/2907