CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2508

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile19.53th
PublishedMay 8, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple stack-based buffer overflows in Trend Micro ServerProtect 5.58 before Security Patch 2 Build 1174 allow remote attackers to execute arbitrary code via crafted data to (1) TCP port 5168, which triggers an overflow in the CAgRpcClient::CreateBinding function in the AgRpcCln.dll library in SpntSvc.exe; or (2) TCP port 3628, which triggers an overflow in EarthAgent.exe. NOTE: both issues are reachable via TmRpcSrv.dll.

Affected Platforms (CPE)

πŸ“¦
Trend Micro

Serverprotect

<= 5.58

References & Advisories

πŸ”— http://osvdb.org/35789
πŸ”— http://osvdb.org/35790
πŸ”— http://secunia.com/advisories/25186
πŸ”— http://securitytracker.com/id?1018010
πŸ”— http://www.kb.cert.org/vuls/id/488424
πŸ”— http://www.kb.cert.org/vuls/id/515616
πŸ”— http://www.securityfocus.com/archive/1/467932/100/0/threaded
πŸ”— http://www.securityfocus.com/archive/1/467933/100/0/threaded

Related Vulnerabilities

CVE-2006-526910.0

Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execut...

CVE-2007-107010.0

Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 ...

CVE-2006-526810.0

Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors ...

CVE-2007-252810.0

Buffer overflow in AgRpcCln.dll for Trend Micro ServerProtect 5.58 for Windows before Security Patch 3 Build 1176 allows remote at...