Intrusion Prevention

TrendMicro.OfficeScan.Server.CGI.Stack.Buffer.Overflow

Description

This indicates an attempt to exploit a Stack Based Buffer Overflow vulnerability in Trend Micro OfficeScan Server.
The vulnerability is caused by an error in the CGI console application "cgiChkMasterPwd.exe", which fails to properly check user supplied data before copying it into an insufficiently sized buffer. Successful exploitation may allow an attacker to execute arbitrary code on a vulnerable system.

Affected Products

Trend Micro OfficeScan Corporate Edition for SMB2.0 6.0
Trend Micro OfficeScan Corporate Edition 8.0
Trend Micro OfficeScan Corporate Edition 7.3
Trend Micro OfficeScan Corporate Edition 7.0
Trend Micro OfficeScan Corporate Edition 6.5
Trend Micro Client Server Messaging Security for SMB 3.6
Trend Micro Client Server Messaging Security for SMB 3.5
Trend Micro Client Server Messaging Security for SMB 3.0

Impact

System compromise: remote code execution.

Recommended Actions

Apply the latest patch or update from the vendor:
http://www.trendmicro.com

CVE References

CVE-2008-1365 CVE-2007-3454