ID CVE-2007-1070
Summary Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 and 5.62, allow remote attackers to execute arbitrary code via crafted RPC requests to TmRpcSrv.dll that trigger overflows when calling the (1) CMON_NetTestConnection, (2) CMON_ActiveUpdate, and (3) CMON_ActiveRollback functions in (a) StCommon.dll, and (4) ENG_SetRealTimeScanConfigInfo and (5) ENG_SendEMail functions in (b) eng50.dll.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_vista:*:*:32_bit:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_vista:*:*:32_bit:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
  • cpe:2.3:a:trend_micro:serverprotect:5.58:*:emc:*:*:*:*:*
    cpe:2.3:a:trend_micro:serverprotect:5.58:*:emc:*:*:*:*:*
  • cpe:2.3:a:trend_micro:serverprotect:5.61:*:network_appliance_filer:*:*:*:*:*
    cpe:2.3:a:trend_micro:serverprotect:5.61:*:network_appliance_filer:*:*:*:*:*
  • cpe:2.3:a:trend_micro:serverprotect:5.62:*:network_appliance_filer:*:*:*:*:*
    cpe:2.3:a:trend_micro:serverprotect:5.62:*:network_appliance_filer:*:*:*:*:*
CVSS
Base: 10.0 (as of 16-10-2018 - 16:36)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 22639
bugtraq
  • 20070220 TSRT-07-01: Trend Micro ServerProtect StCommon.dll Stack Overflow Vulnerabilities
  • 20070220 TSRT-07-02: Trend Micro ServerProtect eng50.dll Stack Overflow Vulnerabilities
cert-vn
  • VU#349393
  • VU#466609
  • VU#630025
  • VU#730433
confirm
misc
osvdb 33042
sectrack 1017676
secunia 24243
vupen ADV-2007-0670
xf
  • serverprotect-eng50-bo(32594)
  • serverprotect-stcommon-bo(32601)
saint via4
  • bid 22639
    description Trend Micro ServerProtect CMON_NetTestConnection buffer overflow
    id misc_av_trendmicro_sprotectcmon
    osvdb 33042
    title serverprotect_cmon_nettestconnection
    type remote
  • bid 22639
    description Trend Micro ServerProtect ENG_SendEMail buffer overflow
    id misc_av_trendmicro_sprotectcmon
    osvdb 33042
    title serverprotect_eng_sendemail
    type remote
  • bid 22639
    description Trend Micro ServerProtect CMON_ActiveUpdate buffer overflow
    id misc_av_trendmicro_sprotectcmon
    osvdb 33042
    title serverprotect_cmon_activeupdate
    type remote
  • bid 22639
    description Trend Micro ServerProtect ENG_SetRealTimeScanConfigInfo buffer overflow
    id misc_av_trendmicro_sprotectcmon
    osvdb 33042
    title serverprotect_eng_setrealtime
    type remote
Last major update 16-10-2018 - 16:36
Published 21-02-2007 - 11:28
Last modified 16-10-2018 - 16:36
Back to Top