CVE-2007-4490 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Serverprotect

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

1.1%

top 22.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trend Micro Serverprotect

Timeline

PublishedAug 22

Latest updateMay 1

Description

Multiple buffer overflows in EarthAgent.exe in Trend Micro ServerProtect 5.58 for Windows before Security Patch 4 allow remote attackers to have an unknown impact via certain RPC function calls to (1) RPCFN_EVENTBACK_DoHotFix or (2) CMD_CHANGE_AGENT_REGISTER_INFO.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDtrend_micro/serverprotect5.58

Patches

Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-wqxv-wp53-gjpf: Multiple buffer overflows in EarthAgent↗2022-05-01

▶

CVEList

CVE-2007-4490: Multiple buffer overflows in EarthAgent↗2007-08-22

▶