CVE-2007-0851

Sažetak

Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable.

Reference

http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289
http://jvn.jp/jp/JVN%2377366274/index.html
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470
http://osvdb.org/33038
http://secunia.com/advisories/24087
http://secunia.com/advisories/24128
http://securitytracker.com/id?1017601
http://securitytracker.com/id?1017602
http://securitytracker.com/id?1017603
http://www.jpcert.or.jp/at/2007/at070004.txt
http://www.kb.cert.org/vuls/id/276432
http://www.securityfocus.com/bid/22449
http://www.vupen.com/english/advisories/2007/0522
http://www.vupen.com/english/advisories/2007/0569
https://exchange.xforce.ibmcloud.com/vulnerabilities/32352

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-07-2017 - 01:30

Objavljeno

08-02-2007 - 18:28