Alias(es)Trend.ServerProtect.Agent.service.CopyAUSrc.Buffer.Overflow |
Release DateSep 06, 2007 |
Severitycritical |
ImpactSystem compromise: Remote code execution. |
DescriptionThis indicates an attempt to exploit a vulnerability in Trend Micro ServerProtect for Windows.The vulnerability is caused by a bounds-checking error in the "RPCFN_CopyAUSrc function" in EarthAgent.exe. It allows remote attackers to execute arbitrary code by sending overly long strings within an RPC request. |
Affected ProductsTrend Micro ServerProtect 5.58 Build 1176 for Windows and prior. |
Recommended ActionsApply the patch, available from the vendor's web site.http://www.trendmicro.com/ftp/products/patches/spnt_558_win_en_securitypatch4.exe |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2007-4219CVE-2007-4218 |
Reference/shttp://www.frsirt.com/english/advisories/2007/2934 (FrSIRT)http://www.securityfocus.com/bid/25395 (BugTraq) |
