10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.954 High
EPSS
Percentile
99.4%
Added: 06/18/2007
CVE: CVE-2007-1070
BID: 22639
OSVDB: 33042
Trend Micro ServerProtect is a virus scanner for servers.
A buffer overflow vulnerability in the **CMON_ActiveUpdate**
and **CMON_ActiveRollback**
functions allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request.
Apply the update referenced in the Trend Micro Vulnerability Response.
<http://dvlabs.tippingpoint.com/advisory/TPTI-07-01>
<http://www.kb.cert.org/vuls/id/466609>
Exploit works on Trend Micro ServerProtect 5.58 Build 1060.
Windows