Trend Micro ServerProtect EarthAgent Crafted Packet Remote DoS

2005-12-14T04:03:17
ID OSVDB:21773
Type osvdb
Reporter Pedram Amini()
Modified 2005-12-14T04:03:17

Description

Vulnerability Description

ServerProtect contains a flaw that may allow a remote denial of service. The issue is triggered via specially crafted packets containing the string "\x21\x43\x65\x87" to port 5005 running the EarthAgent daemon, and will result in loss of availability for the platform.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Trend Micro has released a patch to address this vulnerability.

Short Description

ServerProtect contains a flaw that may allow a remote denial of service. The issue is triggered via specially crafted packets containing the string "\x21\x43\x65\x87" to port 5005 running the EarthAgent daemon, and will result in loss of availability for the platform.

References:

Vendor Specific Advisory URL Security Tracker: 1015358 Secunia Advisory ID:18038 Related OSVDB ID: 21770 Related OSVDB ID: 21771 Related OSVDB ID: 21772 Other Advisory URL: http://www.idefense.com/application/poi/display?id=356&type=vulnerabilities Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0571.html FrSIRT Advisory: ADV-2005-2907 CVE-2005-1928 Bugtraq ID: 15868