Lucene search
HistorySep 07, 2007 - 12:00 a.m.
Trend Micro ServerProtect TMregChange() Stack Overflow Vulnerability
EPSS
0.948
Percentile
99.3%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Server Protect. Authentication is not required to exploit this vulnerability. The specific flaw exists within the routine TMregChange() exported by TMReg.dll which is reachable through the custom protocol subcode “\x15\x00\x00\x00”. The TCP socket bound to port 5005 receives user-supplied data which is copied without proper bounds checking to a stack-based buffer. Thereby resulting in an exploitable condition.
Related
securityvulns
securityvulns
ZDI-07-051: Trend Micro ServerProtect TMregChange() Stack Overflow Vulnerability
2007-09-11 00:00:00
Trend Micro antiviral products multiple security vulnerabilities
2007-09-11 00:00:00
prion
prion
Stack overflow
2007-09-12 01:17:00
cvelist
cvelist
CVE-2007-4731
2007-09-12 01:00:00
saint
saint
Trend Micro ServerProtect TMregChange buffer overflow
2007-09-27 00:00:00
Trend Micro ServerProtect TMregChange buffer overflow
2007-09-27 00:00:00
Trend Micro ServerProtect TMregChange buffer overflow
2007-09-27 00:00:00
nvd
nvd
CVE-2007-4731
2007-09-12 01:17:00
seebug
seebug
Trend Micro ServerProtect TMregChange()函数栈缓冲区溢出漏洞
2007-09-11 00:00:00
cve
cve
CVE-2007-4731
2007-09-12 01:17:00
checkpoint_advisories
checkpoint_advisories
Trend Micro ServerProtect TMregChange Stack Overflow (CVE-2007-4731)
2009-10-15 00:00:00
nessus
nessus
Trend Micro ServerProtect Multiple Remote Overflows
2007-08-22 00:00:00