CVE-2007-0074

Trend Micro ServerProtect 5.58 and 5.7 - Remote Code Execution via Heap-Based Buffer Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via unknown vectors, possibly related to a folder read operation over RPC.

References (7)

Core 7
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32618
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32261
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/768681
Various Sources x_refsource_misc
http://blogs.iss.net/archive/trend.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/3127
Third Party Advisory third-party-advisory x_refsource_iss
http://www.iss.net/threats/309.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39051

Scores

EPSS 0.0844
EPSS Percentile 94.4%

Details

CWE
CWE-119
Status published
Products (2)
trend_micro/serverprotect 5.7
trend_micro/serverprotect 5.58
Published Nov 17, 2008
Tracked Since Feb 18, 2026