CVE-2008-3364

Trend Micro OfficeScan <7.3.0.1020 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3364. PoCs published by Elazar.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Trend Micro OfficeScan's ObjRemoveCtrl ActiveX control. It uses a heap spray technique to execute shellcode, which can launch calc.exe or bind a shell to a port.

Description

Buffer overflow in the ObjRemoveCtrl Class ActiveX control in OfficeScanRemoveCtrl.dll 7.3.0.1020 in Trend Micro OfficeScan Corp Edition (OSCE) Web-Deployment 7.0, 7.3 build 1343 Patch 4 and other builds, and 8.0; Client Server Messaging Security (CSM) 3.5 and 3.6; and Worry-Free Business Security (WFBS) 5.0 allows remote attackers to execute arbitrary code via a long string in the Server property, and possibly other properties. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Elazar · htmlremotewindows

https://www.exploit-db.com/exploits/6152

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Trend Micro OfficeScan's ObjRemoveCtrl ActiveX control. It uses a heap spray technique to execute shellcode, which can launch calc.exe or bind a shell to a port.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Trend Micro OfficeScan 7.3 patch 4 (OfficeScanRemoveCtrl.dll version 7.3.0.1020)

No auth needed

Prerequisites: Victim must have the vulnerable ActiveX control installed and enabled in Internet Explorer

MITRE ATT&CK