CVE-2007-0851

Description

Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable.

Affected products

• Trend Micro / client-server-messaging_suite_smbgold – gold
• Trend Micro / client-server_suite_smbgold – gold
• Trend Micro / control_manager2.5.0 – 2.5.0
• Trend Micro / control_manager3.5 – 3.5
• Trend Micro / control_managergold – gold
• Trend Micro / control_managergold – gold
• Trend Micro / control_managergold – gold
• Trend Micro / control_managergold – gold
• Trend Micro / control_managergold – gold
• Trend Micro / control_managernetware – netware
• Trend Micro / interscan_emanager3.5 – 3.5
• Trend Micro / interscan_emanager3.5.2 – 3.5.2
• Trend Micro / interscan_emanager3.6 – 3.6
• Trend Micro / interscan_emanager3.6 – 3.6
• Trend Micro / interscan_emanager3.51 – 3.51
• Trend Micro / interscan_emanager3.51_j – 3.51_j
• Trend Micro / interscan_messaging_security_suite
• Trend Micro / interscan_messaging_security_suite3.81 – 3.81
• Trend Micro / interscan_messaging_security_suite5.5 – 5.5
• Trend Micro / interscan_messaging_security_suite5.5_build_1183 – 5.5_build_1183
• Trend Micro / interscan_messaging_security_suitegold – gold
• Trend Micro / interscan_messaging_security_suitegold – gold
• Trend Micro / interscan_messaging_security_suitegold – gold
• Trend Micro / interscan_viruswall3.0.1 – 3.0.1
• Trend Micro / interscan_viruswall3.0.1 – 3.0.1
• Trend Micro / interscan_viruswall3.1.0 – 3.1.0
• Trend Micro / interscan_viruswall3.2.3 – 3.2.3
• Trend Micro / interscan_viruswall3.3 – 3.3
• Trend Micro / interscan_viruswall3.6 – 3.6
• Trend Micro / interscan_viruswall3.6 – 3.6
• Trend Micro / interscan_viruswall3.6 – 3.6
• Trend Micro / interscan_viruswall3.6 – 3.6
• Trend Micro / interscan_viruswall3.6.0_build_1182 – 3.6.0_build_1182
• Trend Micro / interscan_viruswall3.6.0_build1166 – 3.6.0_build1166
• Trend Micro / interscan_viruswall3.6.5 – 3.6.5
• Trend Micro / interscan_viruswall3.7.0 – 3.7.0
• Trend Micro / interscan_viruswall3.7.0_build1190 – 3.7.0_build1190
• Trend Micro / interscan_viruswall3.8.0_build1130 – 3.8.0_build1130
• Trend Micro / interscan_viruswall3.32 – 3.32
• Trend Micro / interscan_viruswall3.81 – 3.81
• Trend Micro / interscan_viruswall5.1 – 5.1
• Trend Micro / interscan_viruswallgold – gold
• Trend Micro / interscan_viruswallgold – gold
• Trend Micro / interscan_viruswallgold – gold
• Trend Micro / interscan_viruswallgold – gold
• Trend Micro / interscan_viruswallgold – gold
• Trend Micro / interscan_viruswall_for_windows_nt3.4 – 3.4
• Trend Micro / interscan_viruswall_for_windows_nt3.5 – 3.5
• Trend Micro / interscan_viruswall_for_windows_nt3.6 – 3.6
• Trend Micro / interscan_viruswall_for_windows_nt3.51 – 3.51
• Trend Micro / interscan_viruswall_for_windows_nt3.52 – 3.52
• Trend Micro / interscan_viruswall_for_windows_nt3.52_build1466 – 3.52_build1466
• Trend Micro / interscan_viruswall_for_windows_nt5.1.0 – 5.1.0
• Trend Micro / interscan_viruswall_scan_engine7.510.0-1002 – 7.510.0-1002
• Trend Micro / interscan_webmanager1.2 – 1.2
• Trend Micro / interscan_webmanager2.0 – 2.0
• Trend Micro / interscan_webmanager2.1 – 2.1
• Trend Micro / interscan_webprotectgold – gold
• Trend Micro / interscan_web_security_suite
• Trend Micro / interscan_web_security_suitegold – gold
• Trend Micro / interscan_web_security_suite
• Trend Micro / interscan_web_security_suitegold – gold
• Trend Micro / interscan_web_security_suitegold – gold
• Trend Micro / officescancorporate_3.5 – corporate_3.5
• Trend Micro / officescancorporate_3.5 – corporate_3.5
• Trend Micro / officescancorporate_3.11 – corporate_3.11
• Trend Micro / officescancorporate_3.11 – corporate_3.11
• Trend Micro / officescancorporate_3.13 – corporate_3.13
• Trend Micro / officescancorporate_3.54 – corporate_3.54
• Trend Micro / officescancorporate_5.02 – corporate_5.02
• Trend Micro / officescancorporate_5.5 – corporate_5.5
• Trend Micro / officescancorporate_5.58 – corporate_5.58
• Trend Micro / officescancorporate_6.5 – corporate_6.5
• Trend Micro / officescancorporate_7.0 – corporate_7.0
• Trend Micro / officescancorporate_7.3 – corporate_7.3
• Trend Micro / officescancorporate_3.13 – corporate_3.13
• Trend Micro / officescan3.0 – 3.0
• Trend Micro / officescan4.5.0 – 4.5.0
• Trend Micro / officescan7.3 – 7.3
• Trend Micro / officescancorporate_3.0 – corporate_3.0
• Trend Micro / officescancorporate_3.1.1 – corporate_3.1.1
• Trend Micro / pc-cillin6.0 – 6.0
• Trend Micro / pc-cillin2000 – 2000
• Trend Micro / pc-cillin2002 – 2002
• Trend Micro / pc-cillin2003 – 2003
• Trend Micro / pc-cillin2005 – 2005
• Trend Micro / pc-cillin2006 – 2006
• Trend Micro / pc-cillin_internet_security14_14.00.1485 – 14_14.00.1485
• Trend Micro / pc-cillin_internet_security2005_12.0.0_0_build_1244 – 2005_12.0.0_0_build_1244
• Trend Micro / pc-cillin_internet_security2006_14.10.0.1023 – 2006_14.10.0.1023
• Trend Micro / pc-cillin_internet_security2007 – 2007
• Trend Micro / pc_cillin_-_internet_security_2006
• Trend Micro / portalprotect1.0 – 1.0
• Trend Micro / portalprotect1.2 – 1.2
• Trend Micro / scanmail1.0.0 – 1.0.0
• Trend Micro / scanmail2.6 – 2.6
• Trend Micro / scanmail2.51 – 2.51
• Trend Micro / scanmail3.8 – 3.8
• Trend Micro / scanmail3.81 – 3.81
• Trend Micro / scanmail6.1 – 6.1
• Trend Micro / scanmailgold – gold
• Trend Micro / scanmailgold – gold
• Trend Micro / scanmailgold – gold
• Trend Micro / scanmailgold – gold
• Trend Micro / scanmailgold – gold
• Trend Micro / scanmail_emanager
• Trend Micro / scanning_engine7.1.0 – 7.1.0
• Trend Micro / serverprotect5.3.1 – 5.3.1
• Trend Micro / serverprotect5.5.8 – 5.5.8
• Trend Micro / serverprotect5.58 – 5.58
• Trend Micro / serverprotect5.58 – 5.58
• Trend Micro / serverprotectlinux – linux
• Trend Micro / serverprotectlinux_1.2.0 – linux_1.2.0
• Trend Micro / serverprotectnovell_netware – novell_netware
• Trend Micro / serverprotectwindows – windows
• Trend Micro / viruswall3.0.1 – 3.0.1
• Trend Micro / webprotect3.1.0 – 3.1.0
• Trend Micro / web_security_suite1.2.0 – 1.2.0

References

• MISChttp://securitytracker.com/id?1017601
• MISChttp://www.securityfocus.com/bid/22449
• MISChttp://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289
• MISChttp://securitytracker.com/id?1017603
• MISChttp://www.jpcert.or.jp/at/2007/at070004.txt
• VENDOR_ADVISORYhttp://secunia.com/advisories/24087
• MISChttp://osvdb.org/33038
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/0522
• MISChttp://jvn.jp/jp/JVN%2377366274/index.html
• MISChttp://www.kb.cert.org/vuls/id/276432
• MISChttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/32352
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/0569
• MISChttp://securitytracker.com/id?1017602
• VENDOR_ADVISORYhttp://secunia.com/advisories/24128