CVE-2007-2528 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Serverprotect

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

4.5%

top 10.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trend Micro Serverprotect

Timeline

PublishedMay 8

Latest updateMay 1

Description

Buffer overflow in AgRpcCln.dll for Trend Micro ServerProtect 5.58 for Windows before Security Patch 3 Build 1176 allows remote attackers to execute arbitrary code via unknown vectors related to RPC requests. NOTE: this is probably a different vulnerability than CVE-2007-2508.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDtrend_micro/serverprotect5.58

Patches

Patch: www.trendmicro.com ↗Patch: www.trendmicro.com ↗

🔴Vulnerability Details

GHSA

GHSA-j9x7-2cqg-54fc: Buffer overflow in AgRpcCln↗2022-05-01

▶

CVEList

CVE-2007-2528: Buffer overflow in AgRpcCln↗2007-05-08

▶