411 matches found
Trend Micro Control Manager CSRF
A cross-site request forgery XSRF vulnerability has been reported in Trend Micro Control Manager...
CVE-2011-5001
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
Stack overflow
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
CVE-2011-5001
Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101...
CVE-2011-5001
CVE-2011-5001 concerns a stack-based buffer overflow in Trend Micro Control Manager 5.5 prior to Build 1613. The vulnerability is in the CmdProcessor.exe component, specifically inside the CGenericScheduler::AddTask function of cmdHandlerRedAlertController.dll. By sending a crafted IPC packet to ...
Trend Micro Control Manager buffer overflow
Buffer overflow on TCP/20101 request parsing...
Trend Micro Control Manager "CmdProcessor.exe"远程代码执行漏洞
BUGTRAQ ID: 50965 Trend Micro Control Manager是一款安全解决方案。 Trend Micro Control Manager在实现上存在远程代码执行漏洞,攻击者可利用此漏洞以系统级别的权限执行任意代码。 此漏洞位于运行在TCP端口20101的CmdProcessor.exe服务中,受影响的是cmdHandlerRedAlertController.dll的CGenericScheduler::AddTask函数。在处理特制的IPC报文时,受控的数据会被复制到256个字节的栈缓冲区中,导致远程执行代码 Trend Micro Control...
Trend Micro Control Manager CmdProcessor.exe Remote Buffer Overflow
The Trend Micro Control Manager install on the remote Windows host is missing Critical Patch 1613. As such, the included CmdProcessor.exe component is affected by a remote stack-based buffer overflow vulnerability in the 'CGenericScheduler::AddTask' function of cmdHandlerRedAlertController.dll. B...
TrendMicro Control Manager CmdProcessor.exe AddTask Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trent Micro Control Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within CmdProcessor.exe service running on TCP port 20101. The vulnerable functio...
Trend Micro Control Manager CasLogDirectInsertHandler.cs XSRF
cross-site request forgery XSRF vulnerability has been reported in Trend Micro Control Manager. The vulnerability is due to an error while handling CasLogDirectInsert.aspx requests. A remote attacker may exploit this vulnerability by enticing a user to open a specially crafted URI. Successful...
Cisco Security Advisory: Directory Traversal Vulnerability in Cisco Network Admission Control Manager
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Directory Traversal Vulnerability in Cisco Network Admission Control Manager Advisory ID: cisco-sa-20111005-nac Revision 1.0 For Public Release 2011 October 05 1600 UTC GMT...
Arbitrary Code Execution Vulnerability in HiRDB Control Manager
Overview HiRDB Control Manager - Agent contains a vulnerability that could allow a remote attacker to execute arbitrary code when it receives an unexpected, invalid request. Impact A remote attacker could execute arbitrary code via an unexpected, invalid request. Solution Please refer to the...
Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution
The Trend Micro Control Manager install on the remote Windows host is missing Critical Patch 1422. As such, the included CasLogDirectInsert.aspx http handler reportedly has a vulnerability by which malicious XML and schema information can be used in queries in the backend database. Using a...
TrendMicro Control Manager security vulnerabilities
Integer overflow on TCP/20801 request handling. SQL injection...
ZDI-11-234: Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability
ZDI-11-234: Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-234 July 11, 2011 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Trend Micro -- Affected Products: Trend Micro Control Manager -...
ZDI-11-234: Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability
ZDI-11-234: Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-234 July 11, 2011 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Trend Micro -- Affected Products: Trend Micro Control Manager -...
TrendMicro Control Manager CASProcessor.exe BLOB Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Control Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within EnUtility.dll. A module called from CASProcessor.exe running on TCP port...
Trend Micro Control Manager CasLogDirectInsertHandler.cs Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Control Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the CasLogDirectInsert.aspx...
Denial of Service (DoS) Vulnerability in JP1/ServerConductor/Control Manager
Overview A built-in database in JP1/ServerConductor/Control Manager contains a vulnerability that could cause a denial of service DoS condition due to the abnormal ending of the database process when receiving unexpected data. After the process abends, the service can be restarted by rebooting th...
Trend Micro Control Manager Chunked Overflow (CVE-2005-1929)
The Trend Micro Control Manager product is a centralized outbreak management console. It is meant to consolidate the coordination of outbreak security actions and the management of Trend Micro products and services. The product is a central command center for management of infections or...