CVE-2007-1070 - Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for

CVE-2007-1070

Summary

Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 and 5.62, allow remote attackers to execute arbitrary code via crafted RPC requests to TmRpcSrv.dll that trigger overflows when calling the (1) CMON_NetTestConnection, (2) CMON_ActiveUpdate, and (3) CMON_ActiveRollback functions in (a) StCommon.dll, and (4) ENG_SetRealTimeScanConfigInfo and (5) ENG_SendEMail functions in (b) eng50.dll.

References

Vulnerable Configurations

cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2003_server:sp2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:*:32_bit:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:*:32_bit:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
cpe:2.3:a:trend_micro:serverprotect:5.58:*:emc:*:*:*:*:*
cpe:2.3:a:trend_micro:serverprotect:5.58:*:emc:*:*:*:*:*
cpe:2.3:a:trend_micro:serverprotect:5.61:*:network_appliance_filer:*:*:*:*:*
cpe:2.3:a:trend_micro:serverprotect:5.61:*:network_appliance_filer:*:*:*:*:*
cpe:2.3:a:trend_micro:serverprotect:5.62:*:network_appliance_filer:*:*:*:*:*
cpe:2.3:a:trend_micro:serverprotect:5.62:*:network_appliance_filer:*:*:*:*:*

CVSS

Base:	10.0 (as of 16-10-2018 - 16:36)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	22639
bugtraq	20070220 TSRT-07-01: Trend Micro ServerProtect StCommon.dll Stack Overflow Vulnerabilities 20070220 TSRT-07-02: Trend Micro ServerProtect eng50.dll Stack Overflow Vulnerabilities
cert-vn	VU#349393 VU#466609 VU#630025 VU#730433
confirm	http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034290 http://www.trendmicro.com/ftp/documentation/readme/spnt_558_win_en_securitypatch1_readme.txt
misc	http://www.tippingpoint.com/security/advisories/TSRT-07-01.html http://www.tippingpoint.com/security/advisories/TSRT-07-02.html
osvdb	33042
sectrack	1017676
secunia	24243
vupen	ADV-2007-0670
xf	serverprotect-eng50-bo(32594) serverprotect-stcommon-bo(32601)

saint via4

bid 22639
description Trend Micro ServerProtect CMON_ActiveUpdate buffer overflow
id misc_av_trendmicro_sprotectcmon
osvdb 33042
title serverprotect_cmon_activeupdate
type remote
bid 22639
description Trend Micro ServerProtect ENG_SetRealTimeScanConfigInfo buffer overflow
id misc_av_trendmicro_sprotectcmon
osvdb 33042
title serverprotect_eng_setrealtime
type remote
bid 22639
description Trend Micro ServerProtect ENG_SendEMail buffer overflow
id misc_av_trendmicro_sprotectcmon
osvdb 33042
title serverprotect_eng_sendemail
type remote
bid 22639
description Trend Micro ServerProtect CMON_NetTestConnection buffer overflow
id misc_av_trendmicro_sprotectcmon
osvdb 33042
title serverprotect_cmon_nettestconnection
type remote

Last major update

16-10-2018 - 16:36

Published

21-02-2007 - 11:28

Last modified

16-10-2018 - 16:36