321 matches found
Privilege escalation
A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scheduled scan component. An attacker must first obtain the ability to...
Privilege escalation
A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a manual scan component. An attacker must first obtain the ability to execu...
CVE-2021-25226
A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scan engine component. An attacker must first obtain the ability to execu...
CVE-2021-25226
CVE-2021-25226 affects Trend Micro ServerProtect for Linux 3.0. A memory exhaustion flaw in the scan engine can cause a denial of service when processing specially crafted files. Exploitation is described as requiring access to execute low-privilege code on the target system (local). Some connect...
CVE-2021-25225
CVE-2021-25225 affects Trend Micro ServerProtect for Linux 3.0. The vulnerability is in the splx_schedule_scan component and is due to lack of validation of user-supplied data, which can lead to memory exhaustion and denial of service. Exploitation details vary by source: ZDI-21-086 describes rem...
CVE-2021-25224
A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a manual scan component. An attacker must first obtain the ability to execu...
CVE-2021-25225
A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. The specific flaw exists within a scheduled scan component. An attacker must first obtain the ability to...
CVE-2021-25224
Trend Micro ServerProtect for Linux 3.0 contains a memory exhaustion vulnerability in the manual scan component. A local attacker who can execute low-privileged code on the target can craft specific files to trigger a denial-of-service on the affected product. The vulnerability is tied to the man...
Trend Micro ServerProtect splx_manual_scan Memory Exhaustion Denial-Of-Service Vulnerability
This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Trend Micro ServerProtect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
Trend Micro Serverprotect for Linux 资源管理错误漏洞
Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. A memory exhaustion vulnerability exists in the scanning engine component in Trend Micro ServerProtect for Linux. A local attacker could exploit this vulnerability via specially crafted...
Trend Micro Serverprotect for Linux 资源管理错误漏洞
Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. A memory exhaustion vulnerability exists in the timed scanning component in Trend Micro ServerProtect for Linux. A local attacker could exploit this vulnerability via specially crafted...
Trend Micro ServerProtect vsapiapp Memory Exhaustion Denial-Of-Service Vulnerability
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Trend Micro ServerProtect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
Trend Micro ServerProtect splx_schedule_scan Memory Exhaustion Denial-Of-Service Vulnerability
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Trend Micro ServerProtect. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
ServerProtect for Linux vulnerable to heap-based buffer overflow
Overview Kernel Hook Module for ServerProtect for Linux provided by Trend Micro Incorporated contains a heap-based buffer overflow vulnerability CWE-122. Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solutions through JVN. Impact An attacker who can...
CVE-2020-28575
A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this...
CVE-2020-28575
A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this...
Heap overflow
A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. An attacker must first obtain the ability to execute high-privileged code on the target in order to exploit this...
CVE-2020-28575
CVE-2020-28575 concerns Trend Micro ServerProtect for Linux 3.0. A heap-based buffer overflow in the Kernel Hook Module (KHM) used by ServerProtect allows local privilege escalation when an attacker can execute high-privileged code. The root cause is improper handling/validation of data length in...
Trend Micro Serverprotect for Linux Buffer Overflow Vulnerability
Trend Micro Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. Trend Micro ServerProtect for Linux suffers from a buffer overflow vulnerability that can be exploited by an attacker who can trigger a buffer overflow to trigger a denial of...
Trend Micro Serverprotect for Linux 缓冲区错误漏洞
Trend Micro Trend Micro Serverprotect for Linux is an antivirus program for enterprise environments from Trend Micro, USA. Trend Micro ServerProtect for Linux suffers from a buffer overflow vulnerability that can be exploited by an attacker who can trigger a buffer overflow to trigger a denial of...