CVE-2007-1070 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1070
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1070

Description: Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 and 5.62, allow remote attackers to execute arbitrary code via crafted RPC requests to TmRpcSrv.dll that trigger overflows when calling the (1) CMON_NetTestConnection, (2) CMON_ActiveUpdate, and (3) CMON_ActiveRollback functions in (a) StCommon.dll, and (4) ENG_SetRealTimeScanConfigInfo and (5) ENG_SendEMail functions in (b) eng50.dll.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/32594 http://xforce.iss.net/xforce/xfdb/32601 ST 1017676 SAID Secunia Advisory: SA24243 OSVDB 33042 MISC http://www.tippingpoint.com/security/advisories/TSRT-07-02.html http://www.tippingpoint.com/security/advisories/TSRT-07-01.html CONFIRM http://www.trendmicro.com/ftp/documentation/readme/spnt_558_win_en_securitypatch1_readme.txt http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034290 CERT-VN 630025 730433 349393 466609 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/460690/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/460686/100/0/threaded BID 22639

Return to the previous page.