Wed, Oct 22 2008 12:47
Trend Micro OfficeScan Critical Patch Release
Trend Micro has released a
Critical Patch to address a vulnerability in OfficeScan. This
vulnerability is due to a stack-based buffer overflow condition. By
sending a specially crafted HTTP request containing form data to the
server CGI module, an attacker may be able to execute arbitrary code on
the affected system.
US-CERT encourages users and administrators to review Trend Micro Critical Patch Release overview for Build 1374 and Build 3110 and apply any necessary updates to help mitigate the risks.
Filed under: Advisories / Bulletins