Lucene search
SAINT CorporationSAINT:43E3B9A4B59C08152CD331DFA63F5434HistoryAug 23, 2007 - 12:00 a.m.
Trend Micro ServerProtect RPC NTF_SetPagerNotifyConfig buffer overflow
2007-08-2300:00:00
SAINT Corporation
download.saintcorporation.com
19
0.967 High
EPSS
Percentile
99.7%
Added: 08/23/2007
CVE: CVE-2007-4218
BID: 25395
OSVDB: 39754
Background
ServerProtect is a virus scanner for servers.
Problem
A buffer overflow in the NTF_SetPagerNotifyConfig function within the **Notification.dll** library allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request to port 5168/TCP.
Resolution
Apply ServerProtect 5.58 Security Patch 4.
References
<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=587>
Limitations
Exploit works on Trend Micro ServerProtect 5.58 with Patch 3.
Platforms
Windows
Related
saint
saint
Trend Micro ServerProtect SpntSvc RPC buffer overflow
2007-09-21 00:00:00
Trend Micro ServerProtect SpntSvc RPC buffer overflow
2007-09-21 00:00:00
Trend Micro ServerProtect RPC NTF_SetPagerNotifyConfig buffer overflow
2007-08-23 00:00:00
cert
cert
Trend Micro ServerProtect Agent service RPC stack-buffer overflow
2007-08-23 00:00:00
Trend Micro ServerProtect RPC buffer overflows
2007-08-23 00:00:00
zdi
zdi
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
ZDI-07-050: Trend Micro ServerProtect RPCFN_SetComputerName() Stack Overflow Vulnerability
2007-09-11 00:00:00
iDefense Security Advisory 08.21.07: Trend Micro ServerProtect Multiple Buffer Overflow Vulnerabilities
2007-08-22 00:00:00
Trend Micro antiviral products multiple security vulnerabilities
2007-09-11 00:00:00
prion
prion
Buffer overflow
2007-08-22 23:17:00
cvelist
cvelist
CVE-2007-4218
2007-08-22 23:00:00
cve
cve
CVE-2007-4218
2007-08-22 23:17:00
nessus
nessus
Trend Micro ServerProtect Multiple Remote Overflows
2007-08-22 00:00:00