Lucene search
SAINT CorporationSAINT:2792C17EA8D646C0C3AC819344B89AA7HistoryJan 16, 2012 - 12:00 a.m.
Trend Micro Control Manager AddTask buffer overflow
2012-01-1600:00:00
SAINT Corporation
download.saintcorporation.com
24
0.948 High
EPSS
Percentile
99.3%
Added: 01/16/2012
CVE: CVE-2011-5001
BID: 50965
OSVDB: 77585
Background
Trend Micro Control Manager streamlines administration of Trend Micro security solutions.
Problem
A buffer overflow vulnerability in the **AddTask** function allows remote attackers to execute arbitrary code by sending a specially crafted IPC packet to the **CmdProcessor.exe** service.
Resolution
Upgrade to Trend Micro Control Manager 5.5 build 1613 or higher.
References
<http://www.zerodayinitiative.com/advisories/ZDI-11-345/>
<http://www.trendmicro.com/ftp/documentation/readme/readme_critical_patch_TMCM55_1613.txt>
Limitations
Exploit works on Trend Micro Control Manager 5.5 B1250.
Platforms
Windows
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Stack overflow
2011-12-25 01:55:00
openvas
openvas
Trend Micro Control Manager 'CmdProcessor.exe' Buffer Overflow Vulnerability
2012-07-02 00:00:00
cvelist
cvelist
CVE-2011-5001
2011-12-25 01:00:00
nessus
nessus
Trend Micro Control Manager CmdProcessor.exe Remote Buffer Overflow
2011-12-09 00:00:00
packetstorm
packetstorm
TrendMicro Control Manager 5.5 Buffer Overflow
2012-02-24 00:00:00
saint
saint
Trend Micro Control Manager AddTask buffer overflow
2012-01-16 00:00:00
Trend Micro Control Manager AddTask buffer overflow
2012-01-16 00:00:00
Trend Micro Control Manager AddTask buffer overflow
2012-01-16 00:00:00
nvd
nvd
CVE-2011-5001
2011-12-25 01:55:02
cve
cve
CVE-2011-5001
2011-12-25 01:55:02