ID de Prueba:	1.3.6.1.4.1.25623.1.0.900231
Categoría:	Buffer overflow
Título:	Trend Micro OfficeScan URL Filtering Engine Buffer Overflow Vulnerability
Resumen:	Trend Micro OfficeScan is prone to a buffer overflow vulnerability.
Descripción:	Summary: Trend Micro OfficeScan is prone to a buffer overflow vulnerability. Vulnerability Insight: The flaw is due to an unspecified error in the Trend Micro URL filtering (TMUFE) engine while processing malformed data which can be exploited to cause a buffer overflow and crash or hang the application. Vulnerability Impact: Successful exploitation lets the attackers to cause a denial of service or execute arbitrary code via HTTP request that lacks a method token or format string specifiers in PROPFIND request. Affected Software/OS: Trend Micro OfficeScan 8.0 before SP1 Patch 5 - Build 3510 Trend Micro OfficeScan 10.0 before Build 1224 Solution: Apply Critical Patch Build 1224 for Trend Micro OfficeScan v10.0, and Patch 5 Build 3510 for Trend Micro OfficeScan v8.0 Service Pack 1. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0564 BugTraq ID: 38083 http://www.securityfocus.com/bid/38083 http://www.trendmicro.com/ftp/documentation/readme/readme_1224.txt http://www.securitytracker.com/id?1023553 http://secunia.com/advisories/38396 http://www.vupen.com/english/advisories/2010/0295 XForce ISS Database: officescan-tmufe-bo(56097) https://exchange.xforce.ibmcloud.com/vulnerabilities/56097
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.