|
|
|
Vulnerability Note VU#167739Trend Micro InterScan eManager vulnerable to remotely exploitable buffer overflowOverviewA remotely exploitable buffer overflow exists in Trend Micro InterScan eManager.I. DescriptionTrend Micro InterScan eManager is an application that inspects email traffic flowing into and out of a network for confidential or inappropriate material entering and/or leaving the network. This application has the capability to inspect, modify, and/or block email at the border of the enterprise. Trend Micro InterScan eManager includes several dynamic link libraries which provide management features for the system administrator over an http interface. Some of these dynamic link libraries contain a remotely exploitable buffer overflow.II. ImpactRemote intruders can execute arbitrary code with SYSTEM privileges in the Local System security context.III. SolutionThe following versions of InterScan eManager are affected.
These tests were performed on the following Operating Systems:
A patch for InterScan eManager for NT Ver.3.51J is available from http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=3142 A patch for InterScan eManager for NT Ver.3.51 is pending.
http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=3142 http://www.lac.co.jp/security/english/snsadv_e/42_e.html CreditThis vulnerability was discovered by Little eArth Corporation Co., Ltd and was made public on September 12, 2001. This document was written by Ian A. Finlay.
If you have feedback, comments, or additional information about this vulnerability, please send us
email. |
|||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||
Get Adobe Reader