Trend Micro Control Manager 'CmdProcessor.exe' Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running Trend Micro Control Manager and is prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attackers to cause buffer overflow condition or execute arbitrary code. Impact Level: System/Application

Solution

Apply Critical Patch Build 1613 for Trend Micro Control Manager 5.5, For updates refer to http://downloadcenter.trendmicro.com/index.php?prodid=7

Insight

The 'CGenericScheduler::AddTask' function in cmdHandlerRedAlertController.dll in 'CmdProcessor.exe' fails to process a specially crafted IPC packet sent on TCP port 20101, which could be exploited by remote attackers to cause a buffer overflow.

Affected

Trend Micro Control Manager version 5.5 Build 1250 Hotfix 1550 and prior

References

http://secunia.com/advisories/47114
http://www.securitytracker.com/id?1026390
http://www.trendmicro.com/ftp/documentation/readme/readme_critical_patch_TMCM55_1613.txt
http://www.zerodayinitiative.com/advisories/ZDI-11-345
http://xforce.iss.net/xforce/xfdb/71681

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-5001
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader 'File Extension' Buffer Overflow Vulnerability (Mac OS X)
Cogent DataHub Unicode Buffer Overflow Vulnerability
Blazevideo HDTV Player PLF File Buffer Overflow Vulnerability
Adobe PageMaker Font Structure Multiple BOF Vulnerabilities
CA ARCserve Backup Multiple Bufffer Overflow Vulnerabilities

Take action and discover your vulnerabilities