Trend Micro OfficeScan Client ActiveX Control Remote Buffer Overflow Vulnerability
BID:22585
Info
Trend Micro OfficeScan Client ActiveX Control Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 22585 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0325 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 12 2007 12:00AM |
| Updated: | Feb 01 2008 05:57PM |
| Credit: | The vendor reported this vulnerability. |
| Vulnerable: |
Trend Micro OfficeScan Corporate Edition 7.0 Trend Micro OfficeScan Corporate Edition 7.3 |
| Not Vulnerable: | |
Discussion
Trend Micro OfficeScan Client ActiveX Control Remote Buffer Overflow Vulnerability
Trend Micro OfficeScan Client is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.
Exploiting this issue allows remote attackers to execute arbitrary code in the context of applications using the affected ActiveX control and to compromise affected computers. Failed attempts will likely result in denial-of-service conditions.
Trend Micro OfficeScan Client is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.
Exploiting this issue allows remote attackers to execute arbitrary code in the context of applications using the affected ActiveX control and to compromise affected computers. Failed attempts will likely result in denial-of-service conditions.
Exploit / POC
Trend Micro OfficeScan Client ActiveX Control Remote Buffer Overflow Vulnerability
The following exploit code is available as a module for the Metasploit Framework:
The following exploit code is available as a module for the Metasploit Framework:
Solution / Fix
Trend Micro OfficeScan Client ActiveX Control Remote Buffer Overflow Vulnerability
Solution:
The vendor has released fixes to address this issue.
Trend Micro OfficeScan Corporate Edition 7.3
Trend Micro OfficeScan Corporate Edition 7.0
Solution:
The vendor has released fixes to address this issue.
Trend Micro OfficeScan Corporate Edition 7.3
-
Trend Micro osce_73_win_en_securitypatch_b1241.exe
http://www.trendmicro.com/ftp/products/patches/osce_73_win_en_security patch_b1241.exe
Trend Micro OfficeScan Corporate Edition 7.0
-
Trend Micro osce_70_win_en_securitypatch_b1344.exe
http://www.trendmicro.com/ftp/products/patches/osce_70_win_en_security patch_b1344.exe
References
Trend Micro OfficeScan Client ActiveX Control Remote Buffer Overflow Vulnerability
References:
References:
- Corporate Edition 7.3 Security Patch - Build 1344 SetupINI modules (Trend Micro)
- Trend Micro OfficeScan Product Homepage (Trend Micro)
- Corporate Edition 7.0 Security Patch - Build 1344 SetupINI modules (Trend Micro)
- Vulnerability Note VU#784369 - Trend Micro OfficeScan Web-Deployment SetupINICtr (US-CERT)