CVE-2007-0602 - Buffer overflow in libvsapi.so in the VSAPI library in Trend Micro VirusWall 3.81 for Linux, as used

CVE-2007-0602

Summary

Buffer overflow in libvsapi.so in the VSAPI library in Trend Micro VirusWall 3.81 for Linux, as used by IScan.BASE/vscan, allows local users to gain privileges via a long command line argument, a different vulnerability than CVE-2005-0533.

References

Vulnerable Configurations

cpe:2.3:a:trend_micro:viruswall:3.81:*:*:*:*:*:*:*
cpe:2.3:a:trend_micro:viruswall:3.81:*:*:*:*:*:*:*

CVSS

Base:	6.9 (as of 16-10-2018 - 16:33)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:M/Au:N/C:C/I:C/A:C

refmap via4

bugtraq	20070125 Buffer overflow in VSAPI library of Trend Micro VirusWall 3.81 for Linux
confirm	http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034124&id=EN-1034124
misc	http://www.devtarget.org/tmvwall381v3_exp.c http://www.devtarget.org/trendmicro-advisory-01-2007.txt
osvdb	33043
sectrack	1017562
sreason	2204
vupen	ADV-2007-0367

Last major update

16-10-2018 - 16:33

Published

30-01-2007 - 18:28

Last modified

16-10-2018 - 16:33