|
Family: Gain root remotely --> Category: infos
Trend Micro ServerProtect Multiple Stack Buffer Overflow Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Checks for ServerProtect version
Detailed Explanation for this Vulnerability Test
Synopsis :
It is possible to execute code on the remote host through the AntiVirus
Agent.
Description :
The remote version of TrendMicro ServerProtect is vulnerable to multiple
stack overflows in the RPC interface. By sending specially crafted
requests to the remote host, a possible hacker may be able to exploit stack
based overflows and execute arbitrary code on the remote host.
See also :
http://www.tippingpoint.com/security/advisories/TSRT-07-01.html
http://www.tippingpoint.com/security/advisories/TSRT-07-02.html
Solution :
TrendMicro has released a patch for ServerProtect for Windows/Netware:
http://www.trendmicro.com/download/product.asp?productid=17
Threat Level:
Critical / CVSS Base Score : 10
(AV:R/AC:L/Au:NR/C:C/I:C/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|