34 matches found
EUVD-2000-0007
Malware in sbrugna...
EUVD-2007-3857
Malware in sbrugna...
EUVD-2005-3359
Malware in sbrugna...
Binary Vulnerability in PC-cillin Antivirus Edition
Pc-Cillin is an anti-virus software from Trend Micro that is mainly used for wireless Internet access and home network management. A binary vulnerability exists in the antivirus version of PC-Cillin, which can be exploited by attackers to gain server control privileges...
Trend Micro PC-cillin 2000/2002/2003 Mail Scanner Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6350/info A buffer overflow vulnerability has been reported for PC-cillin's mail scanning utility. An attacker can exploit this vulnerability by connecting to a vulnerable pop3trap.exe service and sending an overly long...
CVE-2011-1327
The Keystroke Encryption feature in Trend Micro Internet Security 2009 aka Virus Buster 2009 and PC-cillin 2009 does not completely encrypt passwords, which allows local users to obtain sensitive information by leveraging a keylogger...
CVE-2007-4277
The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions Everyone:Write for the \.\Tmfilter device, which allows local users to send arbitrary content to the device via the...
Trend Micro Anti-Spyware和PC-cillin SSAPI引擎本地堆栈缓冲区溢出漏洞
Trend Micro AntiSpyware是一款检测和删除恶意软件的应用程序。 Trend SSAPI引擎存在缓冲区溢出,远程攻击者可以利用漏洞以系统进程权限执行任意指令。 Trend Micro产品包含的vstlib32.dll库中的VST函数存在基于堆栈的缓冲区溢出,当攻击者以超长路径名在本地文件系统中建立文件,vstlib32从操作系统中接收到ReadDirectoryChangesW回调通知,就可以导致基于堆栈的缓冲区溢出发生,精心构建路径数据,并诱使应用程序解析,可导致以系统进程权限执行任意指令。 Trend Micro PC-Cillin Internet Securit...
CVE-2007-3873
Stack-based buffer overflow in vstlib32.dll 1.2.0.1012 in the SSAPI Engine 5.0.0.1066 through 5.2.0.1012 in Trend Micro AntiSpyware 3.5 and PC-Cillin Internet Security 2007 15.0 through 15.3, when the Venus Spy Trap VST feature is enabled, allows local users to cause a denial of service service...
Stack overflow
Stack-based buffer overflow in vstlib32.dll 1.2.0.1012 in the SSAPI Engine 5.0.0.1066 through 5.2.0.1012 in Trend Micro AntiSpyware 3.5 and PC-Cillin Internet Security 2007 15.0 through 15.3, when the Venus Spy Trap VST feature is enabled, allows local users to cause a denial of service service...
CVE-2007-3873
CVE-2007-3873 describes a stack-based buffer overflow in Trend Micro’s vstlib32.dll (1.2.0.1012) used by the SSAPI Engine in AntiSpyware 3.5 and PC-Cillin Internet Security 2007 (15.0–15.3), triggered when a long local file path is processed via a ReadDirectoryChangesW callback. Affects SSAPI Eng...
iDefense Security Advisory 02.07.07: Trend Micro TmComm Local Privilege Escalation Vulnerability
Trend Micro TmComm Local Privilege Escalation Vulnerability iDefense Security Advisory 02.07.07 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 07, 2007 I. BACKGROUND The Trend Micro AntiVirus scan engine is widely relied upon to provide AntiVirus capabilities to desktop, server, and...
CVE-2006-1379
Trend Micro PC-cillin Internet Security 2006 14.00.1485 and 14.10.0.1023, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying executable programs such as 1 tmntsrv.exe and 2 tmproxy.exe...
Code injection
Trend Micro PC-cillin Internet Security 2006 14.00.1485 and 14.10.0.1023, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying executable programs such as 1 tmntsrv.exe and 2 tmproxy.exe...
CVE-2006-1379
Trend Micro PC-cillin Internet Security 2006 14.00.1485 and 14.10.0.1023, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying executable programs such as 1 tmntsrv.exe and 2 tmproxy.exe...
CVE-2006-1379
Trend Micro PC-cillin Internet Security 2006 versions 14.00.1485 through 14.10.0.1023 are affected by insecure DACLs on critical files, allowing local users to gain SYSTEM privileges by modifying executables (tmntsrv.exe and tmproxy.exe). Root cause: improper access control on key binaries. Impac...
PT-2006-2388 · Trend Micro · Trend Micro Pc-Cillin Internet Security
Name of the Vulnerable Software and Affected Versions: Trend Micro PC-cillin Internet Security 2006 versions 14.00.1485 through 14.10.0.1023 Description: The issue allows local users to gain SYSTEM privileges by modifying executable programs. This is due to the software using insecure DACLs for...
Technical analysis:“the meat machine”on encounters of an unknown virus-vulnerability warning-the black bar safety net
5 month 1 3 day morning, the author in the online test MySQL Fun vulnerability, in fact, can not say that the vulnerability can only be said to be a technology only, use the MySQL Fun to overcome a Xeon host, inside, the want to do some testing, but stumbled across this station the host of the...
iDefense Security Advisory 12.14.05: Trend Micro PC-Cillin Internet Security Insecure File Permission Vulnerability
Trend Micro PC-Cillin Internet Security Insecure File Permission Vulnerability iDefense Security Advisory 12.14.05 www.idefense.com/application/poi/display?id=351&type=vulnerabilities December 14, 2005 I. BACKGROUND Trend Micro PC-Cillin Internet Security is antivirus protection software for home...
Trend Micro PC-Cillin Internet Security antivirus / firewall weak file permissions
No description provided...