virus logo Intrusion Prevention

Trend.Micro.ServerProtect.eng50.DLL.Buffer.Overflow

description-logoDescription

This indicates a possible attempt to exploit one of two vulnerabilities in Trend Micro ServerProtect for Windows.
These vulnerabilities are a result of bounds checking errors in "RPCFN_ENG_AddTaskExportLogItem" and "RPCFN_ENG_TakeActionOnAFile", in eng50.dll. Successful exploitation may allow remote attackers to execute arbitrary code by sending excessively long strings in an RPC request.

affected-products-logoAffected Products

Trend Micro ServerProtect 5.58 Build 1176 for Windows and prior versions

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the patch, available from the vendor's web site:
http://www.trendmicro.com/ftp/products/patches/spnt_558_win_en_securitypatch4.exe

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-09-02 28.856
Modified
 Name:Trend.
Micro.
ServerProtect.
eng50.
dll.
Buffer.
Overflow:Trend.
Micro.
ServerProtect.
eng50.
DLL.
Buffer.
Overflow
2023-08-01 25.612
Modified
 Name:Trend.
ServerProtect.
eng50.
dll.
Buffer.
Overflow:Trend.
Micro.
ServerProtect.
eng50.
dll.
Buffer.
Overflow
ID 14936
Created Sep 05, 2007
Updated Aug 29, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Exploit Prediction Score 71.36%
Default Action pass
Active
Affected OS Windows
Affected App Other
Profile Type Buffer Errors