CVE-2006-5268

Trend Micro Serverprotect - Authentication Bypass

Title source: rule

Description

Unspecified vulnerability in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via vectors related to obtaining "administrative access to the RPC interface."

References (7)

[Various Sources] http://blogs.iss.net/archive/trend.html

[Vendor Advisory] http://secunia.com/advisories/32618

[Third Party Advisory] http://www.iss.net/threats/307.html

[US Government Resource] http://www.kb.cert.org/vuls/id/768681

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/32261

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/31112

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/3127

Scores

EPSS 0.1832

EPSS Percentile 95.1%

Classification

CWE

CWE-287

Status draft

Affected Products (2)

trend_micro/serverprotect

Timeline

Published Nov 17, 2008

Tracked Since Feb 18, 2026