|
|
CVE Reference: CVE-2007-2508 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-2508 |
|
|
Description: Multiple stack-based buffer overflows in Trend Micro ServerProtect 5.58 before Security Patch 2 Build 1174 allow remote attackers to execute arbitrary code via crafted data to (1) TCP port 5168, which triggers an overflow in the CAgRpcClient::CreateBinding function in the AgRpcCln.dll library in SpntSvc.exe; or (2) TCP port 3628, which triggers an overflow in EarthAgent.exe. NOTE: both issues are reachable via TmRpcSrv.dll. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/34162 http://xforce.iss.net/xforce/xfdb/34163 ST 1018010 SAID Secunia Advisory: SA25186 OSVDB 35789 35790 MISC http://www.zerodayinitiative.com/advisories/ZDI-07-025.html http://www.zerodayinitiative.com/advisories/ZDI-07-024.html CONFIRM http://www.trendmicro.com/ftp/documentation/readme/spnt_558_win_en_securitypatch2_readme.txt CERT-VN 515616 488424 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/467933/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/467932/100/0/threaded BID 23866 23868 |
|
| Return to the previous page. |
