Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-1349Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Pc-cillin

4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.3%
top 47.76%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Trend Micro OfficescanTrend Micro Pc-cillin
Timeline
PublishedDec 18
Latest updateApr 30

Description

Buffer overflow in pop3trap.exe for PC-cillin 2000, 2002, and 2003 allows local users to execute arbitrary code via a long input string to TCP port 110 (POP3).

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

NVDtrend_micro/pc-cillin2000, 2002, 2003+2
NVDtrend_micro/officescancorporate_5.02

Patches

Patch: kb.trendmicro.comPatch: kb.trendmicro.com

🔴Vulnerability Details

2
GHSA
GHSA-pw39-mw9f-77p3: Buffer overflow in pop3trap2022-04-30
CVEList
CVE-2002-1349: Buffer overflow in pop3trap2004-09-01

💥Exploits & PoCs

1
Exploit-DB
Trend Micro PC-cillin 2000/2002/2003 - Mail Scanner Buffer Overflow2002-12-10
CVE-2002-1349 — Trend Micro Pc-cillin vulnerability | cvebase