325 matches found
CVE-2007-1169
The web interface in Trend Micro ServerProtect for Linux SPLX 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network...
Trend Micro ServerProtect ENG_SendEMail buffer overflow
Added: 03/02/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the ENGSendEMail function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request...
Trend Micro ServerProtect ENG_SendEMail buffer overflow
Added: 03/02/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the ENGSendEMail function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request...
Trend Micro ServerProtect ENG_SendEMail buffer overflow
Added: 03/02/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the ENGSendEMail function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request...
Trend Micro ServerProtect ENG_SendEMail buffer overflow
Added: 03/02/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the ENGSendEMail function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request...
CVE-2007-1168
Trend Micro ServerProtect for Linux SPLX 1.25, 1.3, and 2.5 before 20070216 allows remote attackers to access arbitrary web pages and reconfigure the product via HTTP requests with the splx2376info cookie to the web interface port 14942/tcp...
CVE-2007-1169
CVE-2007-1169 affects Trend Micro ServerProtect for Linux (SPLX) versions 1.25, 1.3, and 2.5 prior to 20070216. The web interface accepts logon requests over unencrypted HTTP, which could allow remote attackers to obtain user credentials by sniffing network traffic. This is the only vulnerability...
CVE-2007-1169
The web interface in Trend Micro ServerProtect for Linux SPLX 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network...
CVE-2007-1168
The CVE-2007-1168 issue affects Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 prior to 20070216. Multiple connected documents confirm a cookie-based authentication bypass on the web interface (port 14942/tcp) via the splx_2376_info cookie, allowing remote attackers to access arbit...
Trend Micro ServerProtect CMON_NetTestConnection buffer overflow
Added: 02/23/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONNetTestConnection function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC...
Trend Micro ServerProtect CMON_NetTestConnection buffer overflow
Added: 02/23/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONNetTestConnection function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC...
Trend Micro ServerProtect CMON_NetTestConnection buffer overflow
Added: 02/23/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONNetTestConnection function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC...
Trend Micro ServerProtect CMON_NetTestConnection buffer overflow
Added: 02/23/2007 CVE: CVE-2007-1070 BID: 22639 OSVDB: 33042 Background Trend Micro ServerProtect is a virus scanner for servers. Problem A buffer overflow vulnerability in the CMONNetTestConnection function allows remote attackers to execute arbitrary commands by sending a specially crafted RPC...
[Full-disclosure] iDefense Security Advisory 02.16.07: Trend Micro ServerProtect Web Interface Authorization Bypass Vulnerability
Trend Micro ServerProtect Web Interface Authorization Bypass Vulnerability iDefense Security Advisory 02.16.07 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 16, 2007 I. BACKGROUND Trend ServerProtect is an Anti-virus application designed to run on file servers to catch viruses before...
Trend Micro ServerProtect for Linux splx_2376_info Cookie Authentication Bypass
The remote host is running ServerProtect for Linux, an antivirus application for Linux-based servers from Trend Micro. The version of ServerProtect for Linux installed on the remote host fails to check the validity of the session id in the 'splx2376info' cookie before granting access to its...
Immunity Canvas: TM_SPROTECT
Name| tmsprotect ---|--- CVE| CVE-2007-1070 Exploit Pack| CANVAS Description| Trend Micro ServerProtect RPC Overflow Notes| CVE Name: CVE-2007-1070 VENDOR: Trend Micro Notes: Platforms Tested: References: http://www.tippingpoint.com/security/advisories/TSRT-07-01.html CVE Url:...
CVE-2007-1070
Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 and 5.62, allow remote attackers to execute arbitrary code via crafted RPC requests to TmRpcSrv.dll that trigger overflows when calling the 1 CMONNetTestConnection, 2...
CVE-2007-1070
Trend Micro ServerProtect RPC overflow CVE-2007-1070 affects ServerProtect for Windows/EMC 5.58 and Network Appliance Filer 5.61/5.62. A boundary/stack-based overflow in the RPC handling of TmRpcSrv.dll (via CMON_NetTestConnection, CMON_ActiveUpdate, CMON_ActiveRollback in StCommon.dll and ENG_Se...
TSRT-07-02: Trend Micro ServerProtect eng50.dll Stack Overflow Vulnerabilities
TSRT-07-02: Trend Micro ServerProtect eng50.dll Stack Overflow Vulnerabilities http://www.tippingpoint.com/security/advisories/TSRT-07-02.html February 20, 2007 -- CVE ID: CVE-2007-1070 -- Affected Vendor: Trend Micro -- Affected Products: ServerProtect for Windows 5.58 ServerProtect for EMC 5.58...
Trend Micro ServerProtect Detection
The remote host is running Trend Micro ServerProtect for Windows / NetWare, an antivirus / antispyware for Windows and NetWare servers. C Tenable Network Security include"compat.inc"; if description scriptid24679; scriptversion"1.18"; scriptsetattributeattribute:"pluginmodificationdate",...