Intrusion Prevention
TrendMicro.OfficeScan.Server.cgiRecvFile.Buffer.Overflow
Description
This indicates an attack attempt against a buffer-overflow vulnerability in Trend Micro's OfficeScan.
The vulnerability is caused by a boundary error when the vulnerable software handles a malicious HTTP request. It allows a remote attacker to execute arbitrary code.
Affected Products
Trend Micro OfficeScan 8.0
Trend Micro OfficeScan 7.3
Trend Micro OfficeScan 7.0
Trend Micro Client Server Messaging Security 3.6
Impact
System Compromise
Recommended Actions
Apply the appropriate patch:
Trend Micro OfficeScan 8.0:
http://www.trendmicro.com/ftp/product...CE_8.0_Win_EN_CriticalPatch_B1361.exe
Trend Micro OfficeScan 7.3:
http://www.trendmicro.com/ftp/product...CE_7.3_Win_EN_CriticalPatch_B1367.exe
Trend Micro OfficeScan 7.0:
http://www.trendmicro.com/ftp/product...CE_7.0_Win_EN_CriticalPatch_B1400.exe
Trend Micro Client Server Messaging Security 3.6:
http://www.trendmicro.com/ftp/product...CE_7.6_Win_EN_CriticalPatch_B1195.exe