CVE-2007-4218 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-4218
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-4218

Description: Multiple buffer overflows in the ServerProtect service (SpntSvc.exe) in Trend Micro ServerProtect for Windows before 5.58 Security Patch 4 allow remote attackers to execute arbitrary code via certain RPC requests to certain TCP ports that are processed by the (1) RPCFN_ENG_NewManualScan, (2) RPCFN_ENG_TimedNewManualScan, and (3) RPCFN_SetComputerName functions in (a) StRpcSrv.dll; the (4) RPCFN_CMON_SetSvcImpersonateUser and (5) RPCFN_OldCMON_SetSvcImpersonateUser functions in (b) Stcommon.dll; the (6) RPCFN_ENG_TakeActionOnAFile and (7) RPCFN_ENG_AddTaskExportLogItem functions in (c) Eng50.dll; the (8) NTF_SetPagerNotifyConfig function in (d) Notification.dll; or the (9) RPCFN_CopyAUSrc function in the (e) ServerProtect Agent service.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36175 http://xforce.iss.net/xforce/xfdb/36178 http://xforce.iss.net/xforce/xfdb/36176 http://xforce.iss.net/xforce/xfdb/36174 http://xforce.iss.net/xforce/xfdb/36172 ST 1018594 SREASON http://securityreason.com/securityalert/3052 SAID Secunia Advisory: SA26523 MISC http://www.zerodayinitiative.com/advisories/ZDI-07-050.html IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=587 CONFIRM http://www.trendmicro.com/ftp/documentation/readme/spnt_558_win_en_securitypatch4_readme.txt CERT-VN 109056 204448 CERT http://www.us-cert.gov/cas/techalerts/TA07-235A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/478866/100/0/threaded BID 25395

Return to the previous page.