CVE-2006-5269Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Serverprotect

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
25.6%
top 3.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Trend Micro Serverprotect
Timeline
PublishedNov 17
Latest updateMay 1

Description

Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via unknown vectors, probably related to an RPC interface.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDtrend_micro/serverprotect5.58, 5.7+1

🔴Vulnerability Details

2
GHSA
GHSA-vx3c-rwjv-jr28: Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 52022-05-01
CVEList
CVE-2006-5269: Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 52008-11-17
CVE-2006-5269 — Trend Micro Serverprotect vulnerability | cvebase