|
|
CVE Reference: CVE-2008-3364 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-3364 |
|
|
Description: Buffer overflow in the ObjRemoveCtrl Class ActiveX control in OfficeScanRemoveCtrl.dll 7.3.0.1020 in Trend Micro OfficeScan Corp Edition (OSCE) Web-Deployment 7.0, 7.3 build 1343 Patch 4 and other builds, and 8.0; Client Server Messaging Security (CSM) 3.5 and 3.6; and Worry-Free Business Security (WFBS) 5.0 allows remote attackers to execute arbitrary code via a long string in the Server property, and possibly other properties. NOTE: some of these details are obtained from third party information. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/44042 ST 1020569 SREASON http://securityreason.com/securityalert/4061 SAID Secunia Advisory: SA31277 Secunia Advisory: SA31440 MILW0RM http://www.milw0rm.com/exploits/6152 CONFIRM http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1037899&id=EN-1037899 BID 30407 |
|
| Return to the previous page. |
