Lucene search

SAINT CorporationSAINT:1147B90DF943F482CFE1C9534C4AD55B

HistoryAug 11, 2008 - 12:00 a.m.

Trend Micro OfficeScan objRemoveCtrl ActiveX buffer overflow

2008-08-1100:00:00

SAINT Corporation

download.saintcorporation.com

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.639 Medium

EPSS

Percentile

97.9%

JSON

Added: 08/11/2008
CVE: CVE-2008-3364
BID: 30407
OSVDB: 47213

Background

Trend Micro OfficeScan is a centralized virus and security scan management system.

Problem

A buffer overflow in the objRemoveCtrl ActiveX control, which is automatically installed when OfficeScan is installed through the server web console, allows command execution when invoked with a long, specially crafted Server property.

Resolution

Apply a security patch from Trend Micro.

References

<http://www.frsirt.com/english/advisories/2008/2220/references>

Limitations

Exploit works on the ActiveX control which comes with Trend Micro OfficeScan 7.3.

The vulnerable ActiveX component is installed by accessing the following URL: http://<OfficeScan Server>:8080/

Platforms

Windows

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.639 Medium

EPSS

Percentile

97.9%

JSON

Related for SAINT:1147B90DF943F482CFE1C9534C4AD55B