CVE-2011-5001

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Control Manager
Vendor: CVE Published:; 25 December 2011

Summary

Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAlertController.dll in CmdProcessor.exe in Trend Micro Control Manager 5.5 before Build 1613 allows remote attackers to execute arbitrary code via a crafted IPC packet to TCP port 20101.

References

http://www.securityfocus.com/archive/1/520780/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securitytracker.com/id?1026390

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/71681

vdb-entryx_refsource_XF

EPSS Score

92% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 25, 2011
Vulnerability Reserved
Dec 24, 2011