CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-2508

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile19.53th
Published2007年5月8日
Last Modified2026年4月23日

Vulnerability Description

Multiple stack-based buffer overflows in Trend Micro ServerProtect 5.58 before Security Patch 2 Build 1174 allow remote attackers to execute arbitrary code via crafted data to (1) TCP port 5168, which triggers an overflow in the CAgRpcClient::CreateBinding function in the AgRpcCln.dll library in SpntSvc.exe; or (2) TCP port 3628, which triggers an overflow in EarthAgent.exe. NOTE: both issues are reachable via TmRpcSrv.dll.

Affected Platforms (CPE)

📦
Trend Micro

Serverprotect

<= 5.58

References & Advisories

🔗 http://osvdb.org/35789
🔗 http://osvdb.org/35790
🔗 http://secunia.com/advisories/25186
🔗 http://securitytracker.com/id?1018010
🔗 http://www.kb.cert.org/vuls/id/488424
🔗 http://www.kb.cert.org/vuls/id/515616
🔗 http://www.securityfocus.com/archive/1/467932/100/0/threaded
🔗 http://www.securityfocus.com/archive/1/467933/100/0/threaded

相关漏洞威胁

CVE-2006-526910.0

Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execut...

CVE-2007-107010.0

Multiple stack-based buffer overflows in Trend Micro ServerProtect for Windows and EMC 5.58, and for Network Appliance Filer 5.61 ...

CVE-2006-526810.0

Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors ...

CVE-2007-252810.0

Buffer overflow in AgRpcCln.dll for Trend Micro ServerProtect 5.58 for Windows before Security Patch 3 Build 1176 allows remote at...