SAINT CorporationSAINT:2FD3549D246A23F06595B4675902D61FTrend Micro OfficeScan session cookie buffer overflow
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.839 High
EPSS
Percentile
98.4%
Added: 07/20/2007
CVE: CVE-2007-3454
BID: 24641
OSVDB: 36629
Background
Trend Micro OfficeScan is a centralized virus and security scan management system.
Problem
A buffer overflow vulnerability in the **CGIOCommon.dll** shared library allows remote attackers to execute arbitrary commands by sending a request containing a long, specially crafted session cookie.
Resolution
Install the appropriate patch for OfficeScan.
References
<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=559>
Limitations
Exploit works on Trend Micro OfficeScan Corporate Edition 7.3 on Windows 2000.
Exploit requires the IO-Socket-SSL PERL module to be installed on the scanning host. This module is available from <http://www.cpan.org/modules/by-module/IO/>.
Platforms
Windows
Related
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.839 High
EPSS
Percentile
98.4%