CVE-2022-25329

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated...

CVE-2021-25226

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scan engine component. An attacker must first obtain the ability to execu...

CVE-2021-36745

A vulnerability in Trend Micro ServerProtect for Storage 6.0, ServerProtect for EMC Celerra 5.8, ServerProtect for Network Appliance Filers 5.8, and ServerProtect for Microsoft Windows / Novell Netware 5.8 could allow a remote attacker to bypass authentication on affected installations...

CVE-2021-25224

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a manual scan component. An attacker must first obtain the ability to execu...

CVE-2007-1169

The web interface in Trend Micro ServerProtect for Linux SPLX 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network...

Trend Micro ServerProtect Static Credential (CVE-2022-25329)

Binary data trendmicroserverprotectcve-2022-25329.nbin...

The vulnerability of the executable file EarthAgent.exe in the security tools of ServerProtect for Storage (SPFS), ServerProtect for EMC Celerra (SPEMC), ServerProtect for Network Appliance Filers (SPNAF), and ServerProtect for Microsoft Windows/Novell Netware (SPNT) allows a hacker to trigger a service failure.

The vulnerability of the EarthAgent.exe executable file in security solutions such as ServerProtect for Storage SPFS, ServerProtect for EMC Celerra SPEMC, ServerProtect for Network Appliance Filers SPNAF, and ServerProtect for Microsoft Windows/Novell Netware SPNT is related to a numerical overfl...

The vulnerability of the executable file EarthAgent.exe in the security tools of ServerProtect for Storage (SPFS), ServerProtect for EMC Celerra (SPEMC), ServerProtect for Network Appliance Filers (SPNAF), and ServerProtect for Microsoft Windows/Novell Netware (SPNT) allows a hacker to perform arbitrary actions.

The vulnerability of the EarthAgent.exe executable files in the ServerProtect for Storage SPFS, ServerProtect for EMC Celerra SPEMC, ServerProtect for Network Appliance Filers SPNAF, and ServerProtect for Microsoft Windows/Novell Netware SPNT security solutions is related to the use of...

CVE-2022-25330

Integer overflow conditions that exist in Trend Micro ServerProtect 6.0/5.8 Information Server could allow a remote attacker to crash the process or achieve remote code execution...

CVE-2022-25330

Integer overflow conditions that exist in Trend Micro ServerProtect 6.0/5.8 Information Server could allow a remote attacker to crash the process or achieve remote code execution...

CVE-2022-25330

Integer overflow conditions that exist in Trend Micro ServerProtect 6.0/5.8 Information Server could allow a remote attacker to crash the process or achieve remote code execution...

CVE-2022-25329

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated...

CVE-2022-25329

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated...

CVE-2022-25329

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated...

Design/Logic Flaw

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated...

Integer overflow

Integer overflow conditions that exist in Trend Micro ServerProtect 6.0/5.8 Information Server could allow a remote attacker to crash the process or achieve remote code execution...

CVE-2022-25330

Integer overflow conditions that exist in Trend Micro ServerProtect 6.0/5.8 Information Server could allow a remote attacker to crash the process or achieve remote code execution...

CVE-2022-25330

CVE-2022-25330 concerns Trend Micro ServerProtect Information Server with integer overflow conditions in versions 6.0/5.8 that could permit a remote attacker to crash the process or achieve remote code execution. Connected sources corroborate an impact including remote code execution and DoS, tie...

CVE-2022-25329

Trend Micro ServerProtect 6.0/5.8 Information Server uses a static credential to perform authentication when a specific command is typed in the console. An unauthenticated remote attacker with access to the Information Server could exploit this to register to the server and perform authenticated...

CVE-2022-25329

Summary: CVE-2022-25329 affects Trend Micro ServerProtect/Information Server. A hard-coded (static) credential is used for authentication when a specific console command is entered, allowing an unauthenticated remote attacker with access to register to the server and perform authenticated actions...