CVE-2008-1365

Stack-based buffer overflow in Trend Micro OfficeScan Corporate Edition 8.0 Patch 2 build 1189 and earlier, and 7.3 Patch 3 build 1314 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long encrypted password, which triggers the overflow in (1) cgiChkMasterPwd.exe, (2) policyserver.exe as reachable through cgiABLogon.exe, and other vectors.
Configurations

Configuration 1

cpe:2.3:a:trend_micro:officescan_corporate_edition:*:*:*:*:*:*:*:*
cpe:2.3:a:trend_micro:officescan_corporate_edition:*:*:*:*:*:*:*:*

Information

Published : 2008-03-17 10:44

Updated : 2011-03-08 03:06


NVD link : CVE-2008-1365

Mitre link : CVE-2008-1365

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer