325 matches found
ZDI-07-077: Trend Micro ServerProtect StRpcSrv.dll Insecure Method Exposure Vulnerability
ZDI-07-077: Trend Micro ServerProtect StRpcSrv.dll Insecure Method Exposure Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-077.html December 17, 2007 -- CVE ID: -- Affected Vendor: Trend Micro -- Affected Products: ServerProtect v5.58 -- TippingPointTM IPS Customer Protection:...
Trend Micro ServerProtect StRpcSrv.dll Insecure Method Exposure Vulnerability
These vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaw exists in the SpntSvc.exe daemon, bound by default on TCP port 5168 and exposing the followi...
IPS-1 Protection Update for Various Enterprise Products (enterprisesoftware Version 1)
The enterprisesoftware protocol subsystem offers a collection of protections which cover several vulnerabilities in CA BrightStor and Trend Micro ServerProtect Enterprise Products...
Trend Micro ServerProtect TMregChange buffer overflow
Added: 09/27/2007 CVE: CVE-2007-4731 OSVDB: 45878 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the TMregChange function in the TMreg.dll library allows remote attackers to execute arbitrary commands by sending specially crafted da...
Trend Micro ServerProtect TMregChange buffer overflow
Added: 09/27/2007 CVE: CVE-2007-4731 OSVDB: 45878 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the TMregChange function in the TMreg.dll library allows remote attackers to execute arbitrary commands by sending specially crafted da...
Trend Micro ServerProtect TMregChange buffer overflow
Added: 09/27/2007 CVE: CVE-2007-4731 OSVDB: 45878 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the TMregChange function in the TMreg.dll library allows remote attackers to execute arbitrary commands by sending specially crafted da...
Trend Micro ServerProtect TMregChange buffer overflow
Added: 09/27/2007 CVE: CVE-2007-4731 OSVDB: 45878 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the TMregChange function in the TMreg.dll library allows remote attackers to execute arbitrary commands by sending specially crafted da...
Trend Micro ServerProtect SpntSvc RPC buffer overflow
Added: 09/21/2007 CVE: CVE-2007-4218 BID: 25395 OSVDB: 39753 Background ServerProtect is a virus scanner for servers. The Trend Micro ServerProtect service SpntSvc.exe handles RPC requests on port 5168/TCP. Problem Buffer overflow vulnerabilities in the Trend Micro ServerProtect service allow...
Trend Micro ServerProtect SpntSvc RPC buffer overflow
Added: 09/21/2007 CVE: CVE-2007-4218 BID: 25395 OSVDB: 39753 Background ServerProtect is a virus scanner for servers. The Trend Micro ServerProtect service SpntSvc.exe handles RPC requests on port 5168/TCP. Problem Buffer overflow vulnerabilities in the Trend Micro ServerProtect service allow...
Trend Micro ServerProtect SpntSvc RPC buffer overflow
Added: 09/21/2007 CVE: CVE-2007-4218 BID: 25395 OSVDB: 39753 Background ServerProtect is a virus scanner for servers. The Trend Micro ServerProtect service SpntSvc.exe handles RPC requests on port 5168/TCP. Problem Buffer overflow vulnerabilities in the Trend Micro ServerProtect service allow...
Trend Micro ServerProtect SpntSvc RPC buffer overflow
Added: 09/21/2007 CVE: CVE-2007-4218 BID: 25395 OSVDB: 39753 Background ServerProtect is a virus scanner for servers. The Trend Micro ServerProtect service SpntSvc.exe handles RPC requests on port 5168/TCP. Problem Buffer overflow vulnerabilities in the Trend Micro ServerProtect service allow...
Update Protection against Multiple Trend Micro ServerProtect Buffer Overflow Vulnerabilities
Trend Micro ServerProtect is prone to multiple buffer overflow vulnerabilities. Trend Micro ServerProtect is a centrally managed virus protection console for enterprise-class servers. A remote attacker may exploit these issues to execute arbitrary code on a vulnerable system via a specially craft...
Stack overflow
Stack-based buffer overflow in the TMregChange function in TMReg.dll in Trend Micro ServerProtect before 5.58 Security Patch 4 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 5005...
CVE-2007-4731
Stack-based buffer overflow in the TMregChange function in TMReg.dll in Trend Micro ServerProtect before 5.58 Security Patch 4 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 5005...
CVE-2007-4731
The CVE-2007-4731 vulnerability affects Trend Micro ServerProtect, specifically the TMregChange function in TMreg.dll. A stack-based buffer overflow is caused by improper bounds checking when processing crafted data sent to port 5005/TCP, enabling remote code execution with SYSTEM privileges. It ...
Trend Micro ServerProtect TMregChange()函数栈缓冲区溢出漏洞
CVECAN ID: CVE-2007-4731 Trend ServerProtect是一款企业级反病毒程序。 ServerProtect在处理超长畸形数据时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 ServerProtect的TMReg.dll库所导出的TMregChange例程中存在栈溢出漏洞,绑定到5005端口的TCP套接字未经边界检查便将用户提供的数据拷贝到了栈缓冲区,如果用户提交了超长请求就可以触发这个溢出,导致执行任意指令。 Trend Micro ServerProtect 5.58 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Trend Micro antiviral products multiple security vulnerabilities
Buffer overflow in SSAPI engine on oversized local path. Buffer overflow in ServerProtect on different TCP/5168 RPC requests...
ZDI-07-051: Trend Micro ServerProtect TMregChange() Stack Overflow Vulnerability
ZDI-07-051: Trend Micro ServerProtect TMregChange Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-051.html September 7, 2007 -- CVE ID: CVE-2007-4731 -- Affected Vendor: Trend Micro -- Affected Products: ServerProtect v5.58 -- TippingPointTM IPS Customer Protection...
ZDI-07-050: Trend Micro ServerProtect RPCFN_SetComputerName() Stack Overflow Vulnerability
ZDI-07-050: Trend Micro ServerProtect RPCFNSetComputerName Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-050.html September 7, 2007 -- CVE ID: CVE-2007-4218 -- Affected Vendor: Trend Micro -- Affected Products: ServerProtect v5.58 -- TippingPointTM IPS Customer...
Trend Micro ServerProtect 5.58 CreateBinding() Buffer Overflow
This module exploits a buffer overflow in Trend Micro ServerProtect 5.58 Build 1060. By sending a specially crafted RPC request, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...