Lucene search
K
Trend MicroControl Manager

6 matches found

CVE
CVE
added 2012/09/28 10:0 a.m.136 views

CVE-2012-2998

Affected product: Trend Micro Control Manager (TMCM). Vulnerable component: Ad hoc query module (AdHocQuery_Processor.aspx path, AdHocQuery.NET.dll scope in TMCM). Root cause: SQL injection in the ad hoc query module. Impact: Remote attackers could execute arbitrary SQL commands against the backe...

7.5CVSS8.4AI score0.06089EPSS
CVE
CVE
added 2011/12/25 1:0 a.m.123 views

CVE-2011-5001

CVE-2011-5001 concerns a stack-based buffer overflow in Trend Micro Control Manager 5.5 prior to Build 1613. The vulnerability is in the CmdProcessor.exe component, specifically inside the CGenericScheduler::AddTask function of cmdHandlerRedAlertController.dll. By sending a crafted IPC packet to ...

10CVSS8AI score0.64742EPSS
CVE
CVE
added 2007/02/08 6:0 p.m.59 views

CVE-2007-0851

CVE-2007-0851 describes a buffer overflow in Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, exploitable when processing UPX-packed executables (as used in CCC Cleaner). The CCC Cleaner component is affected when the UPX-packed file is scanned, enabling arbitrary code ...

9.3CVSS7.8AI score0.083EPSS
CVE
CVE
added 2005/02/24 5:0 a.m.51 views

CVE-2005-0533

CVE-2005-0533: Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI prior to 7.510, used across multiple Trend Micro products. An overly long ARJ header file name can overrun a buffer in the ARJ parsing path, enabling remote code execution when a crafted ARJ archive is scanned. Affec...

7.5CVSS7.9AI score0.04409EPSS
CVE
CVE
added 2006/06/27 9:0 p.m.46 views

CVE-2006-3261

CVE-2006-3261 affects Trend Micro Control Manager (TMCM) 3.5. The vulnerability is a cross-site scripting (XSS) flaw in the login page: the username field is not properly sanitized and its value may be reflected in the error log, enabling remote attackers to inject arbitrary web script or HTML. T...

4.3CVSS5.9AI score0.01317EPSS
CVE
CVE
added 2005/02/13 5:0 a.m.39 views

CVE-2005-0383

CVE-2005-0383 concerns Trend Micro Control Manager 3.0 Enterprise Edition, where remote attackers can escalate privileges through a replay attack of the encrypted username and password. The available documents confirm the affected product and the underlying issue (replay of credentials) but do no...

7.5CVSS7.3AI score0.01746EPSS