CVE-2008-2437 - Computer security: vulnerabilities and exploits database

[EN] securityvulns.ru
no-pyccku

CVE CVE-2008-2437
Status Candidate
Description Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 and 8.0 SP1, and Client Server Messaging Security 3.6 allows remote attackers to execute arbitrary code via an HTTP request containing a long ComputerName parameter.
Phase Assigned (27.05.2008)
NVD: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2437
References BID : 31139
BUGTRAQ : 20080912 Secunia Research: Trend Micro OfficeScan "cgiRecvFile.exe" Buffer Overflow
CONFIRM : http://www.trendmicro.com/ftp/documentation/readme...
CONFIRM : http://www.trendmicro.com/ftp/documentation/readme...
CONFIRM : http://www.trendmicro.com/ftp/documentation/readme...
CONFIRM : http://www.trendmicro.com/ftp/documentation/readme...
CONFIRM : http://www.trendmicro.com/ftp/documentation/readme...
MISC : http://secunia.com/secunia_research/2008-35/
SECTRACK : 1020860
SECUNIA : 31342
SREASON : 4263
VUPEN : ADV-2008-2555
XF : trendmicro-cgirecvfile-bo(45072)
SecurityVulns: Trend Micro OfficeScan buffer overflow

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server