CVE-2007-0325
CVE-2007-0325
Multiple buffer overflows in the Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX control in OfficeScanSetupINI.dll, as used in OfficeScan 7.0 before Build 1344, OfficeScan 7.3 before Build 1241, and Client / Server / Messaging Security 3.0 before Build 1197, allow remote attackers to execute arbitrary code via a crafted HTML document.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/16535unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034288http://osvdb.org/33040http://secunia.com/advisories/24193http://www.kb.cert.org/vuls/id/784369http://www.securityfocus.com/bid/22585http://www.securitytracker.com/id?1017664http://www.trendmicro.com/ftp/documentation/readme/osce_70_win_en_securitypatch_1344_readme.txthttp://www.vupen.com/english/advisories/2007/0638