Summary
This host is running Trend Micro Control Manager and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow attackers to cause buffer overflow condition or execute arbitrary code.
Impact Level: System/Application
Solution
Apply Critical Patch Build 1613 for Trend Micro Control Manager 5.5, For updates refer to http://downloadcenter.trendmicro.com/index.php?prodid=7
Insight
The 'CGenericScheduler::AddTask' function in cmdHandlerRedAlertController.dll in 'CmdProcessor.exe' fails to process a specially crafted IPC packet sent on TCP port 20101, which could be exploited by remote attackers to cause a buffer overflow.
Affected
Trend Micro Control Manager version 5.5 Build 1250 Hotfix 1550 and prior
References
Severity
Classification
-
CVE CVE-2011-5001 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability
- Alpine tmail and dmail Buffer Overflow Vulnerabilities (Win)
- ACDSee FotoSlate PLP Multiple Buffer Overflow Vulnerabilities
- Asterisk HTTP Manager Buffer Overflow Vulnerability
- CA ARCserve Backup Multiple Bufffer Overflow Vulnerabilities