CVE-2021-25224

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a manual scan component. An attacker must first obtain the ability to execu...

CVE-2021-25225

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scheduled scan component. An attacker must first obtain the ability to...

CVE-2021-25226

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scan engine component. An attacker must first obtain the ability to execu...

Privilege escalation

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a manual scan component. An attacker must first obtain the ability to execu...

Privilege escalation

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scheduled scan component. An attacker must first obtain the ability to...

CVE-2021-25226

CVE-2021-25226 affects Trend Micro ServerProtect for Linux 3.0. A memory exhaustion flaw in the scan engine can cause a denial of service when processing specially crafted files. Exploitation is described as requiring access to execute low-privilege code on the target system (local). Some connect...

CVE-2021-25226

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scan engine component. An attacker must first obtain the ability to execu...

CVE-2021-25225

CVE-2021-25225 affects Trend Micro ServerProtect for Linux 3.0. The vulnerability is in the splx_schedule_scan component and is due to lack of validation of user-supplied data, which can lead to memory exhaustion and denial of service. Exploitation details vary by source: ZDI-21-086 describes rem...

CVE-2021-25224

Trend Micro ServerProtect for Linux 3.0 contains a memory exhaustion vulnerability in the manual scan component. A local attacker who can execute low-privileged code on the target can craft specific files to trigger a denial-of-service on the affected product. The vulnerability is tied to the man...

CVE-2021-25224

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a manual scan component. An attacker must first obtain the ability to execu...

CVE-2021-25225

A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scheduled scan component. An attacker must first obtain the ability to...

Trend Micro ServerProtect vsapiapp Memory Exhaustion Denial-Of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Trend Micro ServerProtect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Trend Micro ServerProtect splx_schedule_scan Memory Exhaustion Denial-Of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Trend Micro ServerProtect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Trend Micro ServerProtect splx_manual_scan Memory Exhaustion Denial-Of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Trend Micro ServerProtect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Trend Micro Serverprotect for Linux 资源管理错误漏洞

Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. A memory exhaustion vulnerability exists in the timed scanning component in Trend Micro ServerProtect for Linux. A local attacker could exploit this vulnerability via specially crafted...

Trend Micro Serverprotect for Linux 资源管理错误漏洞

Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. A memory exhaustion vulnerability exists in the scanning engine component in Trend Micro ServerProtect for Linux. A local attacker could exploit this vulnerability via specially crafted...

ServerProtect for Linux vulnerable to heap-based buffer overflow

Overview Kernel Hook Module for ServerProtect for Linux provided by Trend Micro Incorporated contains a heap-based buffer overflow vulnerability CWE-122. Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solutions through JVN. Impact An attacker who can...

CVE-2020-28575

A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this...

CVE-2020-28575

A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this...

Heap overflow

A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this...