325 matches found
CVE-2007-4218
Multiple buffer overflows in the ServerProtect service SpntSvc.exe in Trend Micro ServerProtect for Windows before 5.58 Security Patch 4 allow remote attackers to execute arbitrary code via certain RPC requests to certain TCP ports that are processed by the 1 RPCFNENGNewManualScan, 2...
CVE-2007-4219
Integer overflow in the RPCFNSYNCTASK function in StRpcSrv.dll, as used by the ServerProtect service SpntSvc.exe, in Trend Micro ServerProtect for Windows before 5.58 Security Patch 4 allows remote attackers to execute arbitrary code via a certain integer field in a request packet to TCP port 516...
CVE-2007-4490
Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to 1 RPCFNEVENTBACKDoHotFix or 2 CMDCHANGEAGENTREGISTERINFO...
CVE-2007-4219
Trend Micro ServerProtect for Windows contains an integer overflow in RPCFN_SYNC_TASK (StRpcSrv.dll) used by the SpntSvc.exe service, exploitable by remote attackers via malformed requests to 5168/tcp. The flaw can trigger a heap-based buffer overflow and arbitrary code execution. Affected versio...
CVE-2007-4490
This CVE (CVE-2007-4490) affects Trend Micro ServerProtect 5.58 for Windows prior to Security Patch 4. The vulnerability involves multiple buffer overflows in EarthAgent.exe caused by certain RPC function calls (RPCFN_EVENTBACK_DoHotFix and CMD_CHANGE_AGENT_REGISTER_INFO). Exploitation could allo...
CVE-2007-4218
Multiple buffer overflows in the ServerProtect service SpntSvc.exe in Trend Micro ServerProtect for Windows before 5.58 Security Patch 4 allow remote attackers to execute arbitrary code via certain RPC requests to certain TCP ports that are processed by the 1 RPCFNENGNewManualScan, 2...
CVE-2007-4218
Trend Micro ServerProtect for Windows is affected by a buffer overflow in the SpntSvc RPC interface (port 5168) triggered via RPCFN_CMON_SetSvcImpersonateUser in Stcommon.dll, allowing remote code execution. Public sources detail this vulnerability as CVE-2007-4218 and identify the vulnerable com...
iDefense Security Advisory 08.21.07: Trend Micro ServerProtect Multiple Buffer Overflow Vulnerabilities
Trend Micro ServerProtect Multiple Buffer Overflow Vulnerabilities iDefense Security Advisory 08.21.07 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 21, 2007 I. BACKGROUND Trend Micro Inc.'s ServerProtect is an anti-virus software for Microsoft Windows and Novell NetWare servers. It...
iDefense Security Advisory 08.21.07: Trend Micro ServerProtect RPCFN_SYNC_TASK Integer Overflow Vulnerability
Trend Micro ServerProtect RPCFNSYNCTASK Integer Overflow Vulnerability iDefense Security Advisory 08.21.07 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 21, 2007 I. BACKGROUND Trend Micro Inc.'s ServerProtect is an anti-virus software for Microsoft Windows and Novell NetWare servers...
Trend Micro ServerProtect Multiple Remote Overflows
The remote version of Trend Micro ServerProtect is vulnerable to multiple buffer overflows in the RPC interface. By sending specially crafted requests to the remote host, an attacker may be able to exploit those overflows and execute arbitrary code on the remote host with SYSTEM privileges. C...
Update Protection against Trend Micro ServerProtect EarthAgent DCE-RPC Buffer Overflow Vulnerability
A buffer overflow vulnerability has been reported in Trend Micro ServerProtect. Trend Micro ServerProtect is a centrally managed virus protection console for enterprise-class servers. A remote attacker may exploit this issue to execute arbitrary code on a vulnerable system via a specially crafted...
Update Protection against Trend Micro ServerProtect CreateBinding DCE-RPC Buffer Overflow Vulnerability
A buffer overflow vulnerability has been reported in Trend Micro ServerProtect. Trend Micro ServerProtect is a centrally managed virus protection console for enterprise-class servers. A remote attacker may exploit this issue to execute arbitrary code on a vulnerable system via a specially crafted...
Trend Micro ServerProtect SpntSvc.exe CreateBinding buffer overflow
Added: 07/09/2007 CVE: CVE-2007-2508 BID: 23868 OSVDB: 35790 Background Trend Micro ServerProtect is a virus scanner for servers. It includes the SpntSvc.exe daemon which listens for connections on port 5168/TCP. Problem A buffer overflow vulnerability in the CAgRpcClient::CreateBinding function ...
Trend Micro ServerProtect SpntSvc.exe CreateBinding buffer overflow
Added: 07/09/2007 CVE: CVE-2007-2508 BID: 23868 OSVDB: 35790 Background Trend Micro ServerProtect is a virus scanner for servers. It includes the SpntSvc.exe daemon which listens for connections on port 5168/TCP. Problem A buffer overflow vulnerability in the CAgRpcClient::CreateBinding function ...
Trend Micro ServerProtect SpntSvc.exe CreateBinding buffer overflow
Added: 07/09/2007 CVE: CVE-2007-2508 BID: 23868 OSVDB: 35790 Background Trend Micro ServerProtect is a virus scanner for servers. It includes the SpntSvc.exe daemon which listens for connections on port 5168/TCP. Problem A buffer overflow vulnerability in the CAgRpcClient::CreateBinding function ...
Trend Micro ServerProtect SpntSvc.exe CreateBinding buffer overflow
Added: 07/09/2007 CVE: CVE-2007-2508 BID: 23868 OSVDB: 35790 Background Trend Micro ServerProtect is a virus scanner for servers. It includes the SpntSvc.exe daemon which listens for connections on port 5168/TCP. Problem A buffer overflow vulnerability in the CAgRpcClient::CreateBinding function ...
Trend Micro ServerProtect 5.58 EarthAgent.EXE Buffer Overflow
This module exploits a buffer overflow in Trend Micro ServerProtect 5.58 Build 1060 EarthAgent.EXE. By sending a specially crafted RPC request, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Trend Micro ServerProtect CMON_ActiveUpdate buffer overflow
Added: 06/18/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONActiveUpdate and CMONActiveRollback functions allows remote attackers to execute arbitrary commands by sending a...
Trend Micro ServerProtect CMON_ActiveUpdate buffer overflow
Added: 06/18/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONActiveUpdate and CMONActiveRollback functions allows remote attackers to execute arbitrary commands by sending a...
Trend Micro ServerProtect CMON_ActiveUpdate buffer overflow
Added: 06/18/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONActiveUpdate and CMONActiveRollback functions allows remote attackers to execute arbitrary commands by sending a...