CyberSec.Space Logo
Back to CVE Browser

CVE-2008-4402

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1800%
EPSS Percentile19.24th
PublishedOct 3, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple buffer overflows in CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote attackers to execute arbitrary code via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Trend Micro

Officescan

= 8.0
πŸ“¦
Trend Micro

Officescan

= 8.0

References & Advisories

πŸ”— http://secunia.com/advisories/32097
πŸ”— http://www.securityfocus.com/bid/31531
πŸ”— http://www.securitytracker.com/id?1020974
πŸ”— http://www.trendmicro.com/ftp/documentation/readme/OSCE8.0_SP1_Patch1_CriticalPatch_3087_Readme.txt
πŸ”— http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2439_Readme.txt
πŸ”— http://www.vupen.com/english/advisories/2008/2712
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/45608
πŸ”— http://secunia.com/advisories/32097

Related Vulnerabilities

CVE-2007-345410.0

Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote atta...

CVE-2007-345510.0

cgiChkMasterPwd.exe before 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to bypass the passwor...

CVE-2006-138110.0

Trend Micro OfficeScan 5.5, and probably other versions before 6.5, uses insecure DACLs for critical files, which allows local use...

CVE-2008-243710.0

Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 a...