APP: Trend Micro OfficeScan Password Data Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Trend Micro OfficeScan. A successful attack can allow the attacker to execute arbitrary code with the privileges of the user running the application.
Extended Description
Trend Micro OfficeScan Corporate Edition is prone to a buffer-overflow vulnerability and a denial-of-service vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. Successful exploits may allow an attacker to execute arbitrary code with privileges of the user running the application. This may facilitate a complete compromise of vulnerable computers. Failed exploit attempts will likely result in denial-of-service conditions. These issues affect the following: OfficeScan Corporate Edition 8.0 Patch 2 Build 1189 and earlier OfficeScan Corporate Edition 7.0 Patch 3 Build 1314 and earlier Other Trend Micro products may also be affected.
Affected Products
Trend_micro officescan_corporate_edition
Short Name
APP:TMIC:OFFICESCAN-PW-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Buffer CVE-2008-1365 Data Micro OfficeScan Overflow Password Trend bid:28020
Release Date
04/10/2008
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3724
False Positive
Unknown
Vendors
Trend_micro
CVSS Score
6.4