漏洞信息详情
Trend Micro OfficeScan Wizard和CgiRemoteInstall多个缓冲区溢出漏洞
- CNNVD编号:CNNVD-200611-492
- 危害等级: 中危
- CVE编号: CVE-2006-6178
- 漏洞类型: 缓冲区溢出
- 发布时间: 2006-11-30
- 威胁类型: 远程
- 更新时间: 2006-12-12
- 厂 商: trend_micro
- 漏洞来源: The vendor reporte...
漏洞简介
用于Trend Micro OfficeScan 7.3 before build 7.3.0.1087的PCCSRV\Web_console\RemoteInstallCGI\Wizard.exe存在缓冲区溢出,远程攻击者可通过未知向量来执行任意代码。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
Trend Micro OfficeScan Corporate Edition 7.3
Trend Micro Trend Micro OfficeScan osce_73_win_en_patch1.1
http://www.trendmicro.com/ftp/products/patches/osce_73_win_en_patch1.1
.exe
Trend Micro OfficeScan Corporate Edition 6.5
Trend Micro Trend Micro OfficeScan OSCE_6.5_win_en_patch8
http://www.trendmicro.com/ftp/products/patches/OSCE_6.5_win_en_patch8.
exe
参考网址
来源: MISC
链接:http://solutionfile.trendmicro.com/SolutionFile/1031702/en/Hotfix_Readme_OSCE7_3_B1087.txt
来源: esupport.trendmicro.com
链接:http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1031702
来源: BID
名称: 21442
链接:http://www.securityfocus.com/bid/21442
来源: VUPEN
名称: ADV-2006-4852
链接:http://www.frsirt.com/english/advisories/2006/4852
受影响实体
- Trend_micro Officescan:7.3
补丁
暂无
评论