Buffer Overflow Vulnerability in Trend Micro ServerProtect
CVE-2007-2533

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Serverprotect
Vendor: CVE Published:; 9 May 2007

Summary

Multiple buffer overflow vulnerabilities have been identified in Trend Micro ServerProtect 5.58 prior to Security Patch 2 - Build 1174. These vulnerabilities could allow remote attackers to execute arbitrary code via specially crafted RPC messages. Specifically, the affected functions include RPCFN_ActiveRollback in stcommon.dll and ENG_SetRealTimeScanConfigInfo and ENG_SendEmail in eng50.dll. Implementing the necessary security patch is crucial to safeguarding systems against potential exploits.

References

http://www.vupen.com/english/advisories/2007/1689

vdb-entryx_refsource_VUPEN

http://osvdb.org/35792

vdb-entryx_refsource_OSVDB

http://osvdb.org/35791

vdb-entryx_refsource_OSVDB

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 9, 2007
Vulnerability Reserved
May 8, 2007