Trend Micro OfficeScan Wizard and CgiRemoteInstall Multiple Buffer Overflow Vulnerabilities

Bugtraq ID:	21442
Class:	Boundary Condition Error
CVE:	CVE-2006-6179 CVE-2006-6178
Remote:	Yes
Local:	No
Published:	Dec 04 2006 12:00AM
Updated:	Jul 05 2016 09:38PM
Credit:	The vendor reported these vulnerabilities.
Vulnerable:	Trend Micro OfficeScan Corporate Edition 7.0 Trend Micro OfficeScan Corporate Edition 6.5 Trend Micro OfficeScan Corporate Edition 5.58 Trend Micro OfficeScan Corporate Edition 5.5 Trend Micro OfficeScan Corporate Edition 5.0 2 Trend Micro OfficeScan Corporate Edition 3.54 - Microsoft Windows 2000 Professional SP2 - Microsoft Windows 2000 Professional SP1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows 98SE - Microsoft Windows ME - Microsoft Windows NT 4.0 SP6a - Microsoft Windows NT 4.0 SP5 - Microsoft Windows NT 4.0 SP4 - Microsoft Windows NT 4.0 SP3 - Novell Netware 5.1 - Novell Netware 5.0 - Novell Netware 4.11 - Novell Netware 4.1 - Novell Netware 3.1.2 Trend Micro OfficeScan Corporate Edition 3.13 - Microsoft Windows 3.1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Novell Netware 4.11 - Novell Netware 4.1 Trend Micro OfficeScan Corporate Edition 3.11 - Microsoft Windows 3.1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Novell Netware 4.11 - Novell Netware 4.1 Trend Micro OfficeScan Corporate Edition 3.5 - Microsoft Windows 3.1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Novell Netware 4.11 - Novell Netware 4.1 Trend Micro OfficeScan Corporate Edition 3.0 - Microsoft Windows 3.1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Novell Netware 4.11 - Novell Netware 4.1 Trend Micro OfficeScan Corporate Edition 7.3
Not Vulnerable:

Trend Micro OfficeScan Wizard and CgiRemoteInstall Multiple Buffer Overflow Vulnerabilities

Trend Micro OfficeScan is prone to multiple buffer-overflow vulnerabilities because the application fails to check the size of data in unspecified arguments before copying it into finite-sized internal memory buffers.

An attacker can exploit these issues to execute arbitrary code with administrative privileges within the context of the OfficeScan Server application. This may facilitate the compromise of affected servers.

Trend Micro OfficeScan versions prior to and including 6.5 and 7.3 are confirmed affected by these issues.

Trend Micro OfficeScan Wizard and CgiRemoteInstall Multiple Buffer Overflow Vulnerabilities

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Trend Micro OfficeScan Wizard and CgiRemoteInstall Multiple Buffer Overflow Vulnerabilities

Solution:
Trend Micro has released a fix that addresses these issues. Please see the vendor references for more information.


Trend Micro OfficeScan Corporate Edition 7.3

• Trend Micro Trend Micro OfficeScan osce_73_win_en_patch1.1
  http://www.trendmicro.com/ftp/products/patches/osce_73_win_en_patch1.1 .exe

Trend Micro OfficeScan Corporate Edition 6.5

• Trend Micro Trend Micro OfficeScan OSCE_6.5_win_en_patch8
  http://www.trendmicro.com/ftp/products/patches/OSCE_6.5_win_en_patch8. exe

Trend Micro OfficeScan Wizard and CgiRemoteInstall Multiple Buffer Overflow Vulnerabilities

References:

• Trend Micro OfficeScan Homepage (Trend Micro)
  
• Trend Micro OfficeScan Wizard and CgiRemoteInstall Buffer Overflow Vulnerabiliti (FrSIRT)