Wed, Oct 22 2008 12:47 Don

Trend Micro OfficeScan Critical Patch Release

Trend Micro has released a Critical Patch to address a vulnerability in OfficeScan. This vulnerability is due to a stack-based buffer overflow condition. By sending a specially crafted HTTP request containing form data to the server CGI module, an attacker may be able to execute arbitrary code on the affected system.

US-CERT encourages users and administrators to review Trend Micro Critical Patch Release overview for Build 1374 and Build 3110 and apply any necessary updates to help mitigate the risks.

http://www.us-cert.gov/current/index.html#trend_micro_officescan_critical_patch

Filed under: