Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-1529 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Interscan Viruswall

5 documents4 sources

Severity

7.5HIGHNVD

EPSS

15.0%

top 5.42%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Trend Micro Interscan Viruswall

Timeline

PublishedNov 7

Latest updateApr 30

Description

A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute arbitrary code.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDtrend_micro/interscan_viruswall3.23, 3.3+1

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-mmh6-2vw6-82r4: A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3↗2022-04-30

▶

CVEList

CVE-1999-1529: A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3↗2001-09-12

▶

💥Exploits & PoCs

Exploit-DB

Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (2)↗1999-11-07

▶

Exploit-DB

Trend Micro Interscan VirusWall 3.2.3/3.3 - 'HELO' Remote Buffer Overflow (1)↗1999-11-07

▶