Trend Micro InterScan VirusWall eManager register.dll Overflow

2001-09-12T00:00:00
ID OSVDB:6150
Type osvdb
Reporter ARAI Yuu(y.arai@lac.co.jp)
Modified 2001-09-12T00:00:00

Description

Vulnerability Description

A remote overflow exists in InterScan VirusWall eManager. The 'register.dll' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted URL request, a remote attacker can cause arbitrary code execution with SYSTEM privileges resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Trend Micro has released a patch to address this vulnerability.

Short Description

A remote overflow exists in InterScan VirusWall eManager. The 'register.dll' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted URL request, a remote attacker can cause arbitrary code execution with SYSTEM privileges resulting in a loss of integrity.

References:

Vendor URL: http://www.trendmicro.com/en/home/us/enterprise.htm Related OSVDB ID: 6151 Related OSVDB ID: 6153 Related OSVDB ID: 6152 Related OSVDB ID: 6154 Related OSVDB ID: 6155 Other Advisory URL: http://www.lac.co.jp/business/sns/intelligence/SNSadvisory_e/42_e.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-09/0099.html ISS X-Force ID: 7104 CVE-2001-0958 CERT VU: 167739 Bugtraq ID: 3327