CVE-2021-25226

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scan engine component. An attacker must first obtain the ability to execu...

ServerProtect for Linux vulnerable to heap-based buffer overflow

Overview Kernel Hook Module for ServerProtect for Linux provided by Trend Micro Incorporated contains a heap-based buffer overflow vulnerability CWE-122. Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solutions through JVN. Impact An attacker who can...

Trend Micro Serverprotect for Linux 缓冲区错误漏洞

Trend Micro Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. Trend Micro ServerProtect for Linux suffers from a buffer overflow vulnerability that can be exploited by an attacker who can trigger a buffer overflow to trigger a denial of...

ServerProtect for Linux vulnerable to OS command injection

Overview ServerProtect for Linux provided by Trend Micro Incorporated contains an OS command injection vulnerability CWE-78. Incorporated reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact A remote authenticated attacker may execute arbitrary code. Soluti...

Vulnerability fixed in Trend Micro ServerProtect

Trend Micro has fixed a vulnerability in ServerProtect for Linux. The vulnerability allows a remote malicious person to to execute arbitrary code under certain circumstances. Trend Micro rated the vulnerability with attribute CVE-2020-24561 with a CVSS score of 9.1. Trend Micro has released updat...

CVE-2017-9036

Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows local users to gain privileges by leveraging an unrestricted quarantine directory...

CVE-2017-9037

Multiple cross-site scripting XSS vulnerabilities in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allow remote attackers to inject arbitrary web script or HTML via the 1 S44, 2 S5, 3 Sactionfail, 4 Sptnupdate, 5 T113, 6 T114, 7 T115, 8 T117117, 9 T118, 10 Tactionfail, 11 Tptnupdate, 12...

Trend Micro ServerProtect for Linux Cross-Site Scripting Vulnerability (CNVD-2017-08788)

Trend Micro ServerProtect for Linux is a Trend Micro Trend Micro company for Linux in the virus before reaching the end-user to be blocked to prevent the expansion of the entire network of antivirus software. A cross-site scripting vulnerability exists in Trend Micro ServerProtect for Linux versi...

Trend Micro ServerProtect for Linux Cross-Site Request Forgery Vulnerability

Trend Micro ServerProtect for Linux is a Trend Micro Trend Micro company for Linux in the virus before reaching the end-user to be blocked to prevent the expansion of the entire network of antivirus software. A cross-site request forgery vulnerability exists in Trend Micro ServerProtect for Linux...

CVE-2007-1169

The web interface in Trend Micro ServerProtect for Linux SPLX 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network...