CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
95.4%
Multiple buffer overflows in CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote attackers to execute arbitrary code via unspecified vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
trend_micro | officescan | 8.0 | cpe:2.3:a:trend_micro:officescan:8.0:sp1:*:*:*:*:*:* |
trend_micro | officescan | 8.0 | cpe:2.3:a:trend_micro:officescan:8.0:sp1_patch1:*:*:*:*:*:* |
secunia.com/advisories/32097
www.securityfocus.com/bid/31531
www.securitytracker.com/id?1020974
www.trendmicro.com/ftp/documentation/readme/OSCE8.0_SP1_Patch1_CriticalPatch_3087_Readme.txt
www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2439_Readme.txt
www.vupen.com/english/advisories/2008/2712
exchange.xforce.ibmcloud.com/vulnerabilities/45608