CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
99.7%
Added: 08/23/2007
CVE: CVE-2007-4218
BID: 25395
OSVDB: 39754
ServerProtect is a virus scanner for servers.
A buffer overflow in the NTF_SetPagerNotifyConfig function within the **Notification.dll**
library allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request to port 5168/TCP.
Apply ServerProtect 5.58 Security Patch 4.
<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=587>
Exploit works on Trend Micro ServerProtect 5.58 with Patch 3.
Windows