CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
99.2%
Added: 07/09/2007
CVE: CVE-2007-2508
BID: 23868
OSVDB: 35790
Trend Micro ServerProtect is a virus scanner for servers. It includes the SpntSvc.exe daemon which listens for connections on port 5168/TCP.
A buffer overflow vulnerability in the **CAgRpcClient::CreateBinding**
function in the **AgRpcCln.dll**
library allows remote attackers to execute arbitrary commands by sending a specially crafted RPC request to the SpntSvc.exe daemon.
Apply ServerProtect 5.58 Security Patch 3 (build 1176) or higher.
<http://www.zerodayinitiative.com/advisories/ZDI-07-025.html>
Exploit works on Trend Micro ServerProtect 5.58 Build 1060.
Windows