cbcvebase.
CVE-2008-2437
published 2008-09-16

CVE-2008-2437: Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 and 8.0 SP1, and Client Server…

PriorityP355critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
6.67%
93.1th percentile
Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 and 8.0 SP1, and Client Server Messaging Security 3.6 allows remote attackers to execute arbitrary code via an HTTP request containing a long ComputerName parameter.

Affected

7 ranges
VendorProductVersion rangeFixed in
trend_microclient-server-messaging_security
trend_microclient-server-messaging_security
trend_microclient-server-messaging_security
trend_microclient-server-messaging_security
trend_microofficescan
trend_microofficescan
trend_microofficescan
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.