Trend Micro Serverprotect vulnerabilities
25 known vulnerabilities affecting trend_micro/serverprotect.
Total CVEs
25
CISA KEV
0
Public exploits
3
Exploited in wild
1
Severity breakdown
CRITICAL18HIGH4MEDIUM3
Vulnerabilities
Page 2 of 2
CVE-2005-0533P4HIGHCVSS 7.5v1.3v1.25_2007-02-16+2 more2005-05-02
CVE-2005-0533 [HIGH] CVE-2005-0533: Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple
Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple Trend Micro products, allows remote attackers to execute arbitrary code via a crafted ARJ file with long header file names that modify pointers within a structure.
nvd
CVE-2005-1930P4MEDIUMCVSS 5.0v5.582005-12-14
CVE-2005-1930 [MEDIUM] CVE-2005-1930: Directory traversal vulnerability in the Crystal Report component (rptserver.asp) in Trend Micro Ser
Directory traversal vulnerability in the Crystal Report component (rptserver.asp) in Trend Micro ServerProtect Management Console 5.58, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Server 1.1, and possibly earlier versions, allows remote attackers to read arbitrary files via the IMAGE parameter.
nvd
CVE-2006-6458P4HIGHCVSS 7.8v5.582006-12-11
CVE-2006-6458 [HIGH] CVE-2006-6458: The Trend Micro scan engine before 8.320 for Windows and before 8.150 on HP-UX and AIX, as used in T
The Trend Micro scan engine before 8.320 for Windows and before 8.150 on HP-UX and AIX, as used in Trend Micro PC Cillin - Internet Security 2006, Office Scan 7.3, and Server Protect 5.58, allows remote attackers to cause a denial of service (CPU consumption and system hang) via a malformed RAR archive with an Archive Header section with the head_size and pack_
nvd
CVE-2006-0642P4MEDIUMCVSS 5.1v5.582006-02-10
CVE-2006-0642 [MEDIUM] CVE-2006-0642: Trend Micro ServerProtect 5.58, and possibly InterScan Messaging Security Suite and InterScan Web Se
Trend Micro ServerProtect 5.58, and possibly InterScan Messaging Security Suite and InterScan Web Security Suite, have a default configuration setting of "Do not scan compressed files when Extracted file count exceeds 500 files," which may be too low in certain circumstances, which allows remote attackers to bypass anti-virus checks by sending compressed arch
nvd
CVE-2007-1169P4MEDIUMCVSS 5.0v1.25_2007-02-162007-03-02
CVE-2007-1169 [MEDIUM] CVE-2007-1169: The web interface in Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 a
The web interface in Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network.
nvd
← Previous2 / 2