CVE-2007-3454
published 2007-06-27CVE-2007-3454: Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary…
PriorityP344critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
5.53%
91.8th percentile
Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonstrated using a long session cookie to unspecified CGI programs that use this library.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| trend_micro | officescan | — | — |
| trend_micro | officescan | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=559http://osvdb.org/36629http://secunia.com/advisories/25778http://securitytracker.com/id?1018320http://www.securityfocus.com/bid/24641http://www.trendmicro.com/ftp/documentation/readme/osce_80_win_en_securitypatch_b1042_readme.txthttp://www.vupen.com/english/advisories/2007/2330https://exchange.xforce.ibmcloud.com/vulnerabilities/35051http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=559http://osvdb.org/36629http://secunia.com/advisories/25778http://securitytracker.com/id?1018320http://www.securityfocus.com/bid/24641http://www.trendmicro.com/ftp/documentation/readme/osce_80_win_en_securitypatch_b1042_readme.txthttp://www.vupen.com/english/advisories/2007/2330https://exchange.xforce.ibmcloud.com/vulnerabilities/35051
2007-06-27
Published