CVE-2007-1070
CVE-2007-1070
Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 and 5.62, allow remote attackers to execute arbitrary code via crafted RPC requests to TmRpcSrv.dll that trigger overflows when calling the (1) CMON_NetTestConnection, (2) CMON_ActiveUpdate, and (3) CMON_ActiveRollback functions in (a) StCommon.dll, and (4) ENG_SetRealTimeScanConfigInfo and (5) ENG_SendEMail functions in (b) eng50.dll.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 2
exploitdbwww.exploit-db.com/exploits/4367não verificadoexploitdbwww.exploit-db.com/exploits/16827não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034290http://osvdb.org/33042http://secunia.com/advisories/24243https://exchange.xforce.ibmcloud.com/vulnerabilities/32594https://exchange.xforce.ibmcloud.com/vulnerabilities/32601http://www.kb.cert.org/vuls/id/349393http://www.kb.cert.org/vuls/id/466609http://www.kb.cert.org/vuls/id/630025http://www.kb.cert.org/vuls/id/730433http://www.securityfocus.com/archive/1/460686/100/0/threadedhttp://www.securityfocus.com/archive/1/460690/100/0/threadedhttp://www.securityfocus.com/bid/22639