10
CVE-2007-2508
- EPSS 77.19%
- Veröffentlicht 08.05.2007 23:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:44
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple stack-based buffer overflows in Trend Micro ServerProtect 5.58 before Security Patch 2 Build 1174 allow remote attackers to execute arbitrary code via crafted data to (1) TCP port 5168, which triggers an overflow in the CAgRpcClient::CreateBinding function in the AgRpcCln.dll library in SpntSvc.exe; or (2) TCP port 3628, which triggers an overflow in EarthAgent.exe. NOTE: both issues are reachable via TmRpcSrv.dll.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Trend Micro ≫ Serverprotect Version <= 5.58
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 77.19% | 0.995 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://osvdb.org/35789
http://osvdb.org/35790
http://secunia.com/advisories/25186
http://securitytracker.com/id?1018010
http://www.kb.cert.org/vuls/id/488424
http://www.kb.cert.org/vuls/id/515616
http://www.securityfocus.com/archive/1/467932/100/0/threaded
http://www.securityfocus.com/archive/1/467933/100/0/threaded
http://www.securityfocus.com/bid/23866
http://www.securityfocus.com/bid/23868
http://www.trendmicro.com/ftp/documentation/readme/spnt_558_win_en_securitypatch2_readme.txt
http://www.vupen.com/english/advisories/2007/1689
http://www.zerodayinitiative.com/advisories/ZDI-07-024.html
http://www.zerodayinitiative.com/advisories/ZDI-07-025.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/34162
https://exchange.xforce.ibmcloud.com/vulnerabilities/34163