Vulnerabilities > CVE-2006-5268 - Remote vulnerability in Trend Micro Serverprotect 5.58/5.7
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors related to obtaining "administrative access to the RPC interface."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Seebug
bulletinFamily | exploit |
description | BUGTRAQ ID: 32261 CVE(CAN) ID: CVE-2006-5268,CVE-2007-0072,CVE-2007-0073,CVE-2007-0074,CVE-2006-5269,CVE-2008-0012,CVE-2008-0013,CVE-2008-0014 Trend ServerProtect是一款企业级反病毒程序。 ServerProtect的RPC认证过程可能允许未经认证的远程攻击者获得对RPC接口的管理访问;此外多个RPC过程中还存在堆溢出漏洞,远程攻击者可以通过提交恶意请求触发这些溢出,导致执行任意指令。 Trend Micro ServerProtect 5.7 Trend Micro ServerProtect 5.58 Trend Micro ----------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: <a href=http://www.antivirus.com/ target=_blank>http://www.antivirus.com/</a> |
id | SSV:4451 |
last seen | 2017-11-19 |
modified | 2008-11-14 |
published | 2008-11-14 |
reporter | Root |
title | Trend Micro ServerProtect多个远程堆溢出及非授权访问漏洞 |