Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for pc-cillin_internet_security by trend_micro

    CVE-2007-0856 (GCVE-0-2007-0856)

    Vulnerability from nvd – Published: 2007-02-08 18:00 – Updated: 2024-08-07 12:34
    VLAI
    Summary
    TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\.\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    http://securitytracker.com/id?1017604 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/22448 vdb-entryx_refsource_BID
    http://secunia.com/advisories/24069 third-party-advisoryx_refsource_SECUNIA
    http://esupport.trendmicro.com/support/viewxml.do… x_refsource_CONFIRM
    http://www.kb.cert.org/vuls/id/666800 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1017605 vdb-entryx_refsource_SECTRACK
    http://www.vupen.com/english/advisories/2007/0521 vdb-entryx_refsource_VUPEN
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1017606 vdb-entryx_refsource_SECTRACK
    http://osvdb.org/33039 vdb-entryx_refsource_OSVDB
    http://www.kb.cert.org/vuls/id/282240 third-party-advisoryx_refsource_CERT-VN
    Date Public
    2007-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:34:21.205Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070207 Trend Micro TmComm Local Privilege Escalation Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=469"
              },
              {
                "name": "1017604",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017604"
              },
              {
                "name": "22448",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22448"
              },
              {
                "name": "24069",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24069"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432"
              },
              {
                "name": "VU#666800",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/666800"
              },
              {
                "name": "1017605",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017605"
              },
              {
                "name": "ADV-2007-0521",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0521"
              },
              {
                "name": "trendmicro-tmcomm-privilege-escalation(32353)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32353"
              },
              {
                "name": "1017606",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017606"
              },
              {
                "name": "33039",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/33039"
              },
              {
                "name": "VU#282240",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/282240"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\\\.\\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070207 Trend Micro TmComm Local Privilege Escalation Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=469"
            },
            {
              "name": "1017604",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017604"
            },
            {
              "name": "22448",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22448"
            },
            {
              "name": "24069",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24069"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432"
            },
            {
              "name": "VU#666800",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/666800"
            },
            {
              "name": "1017605",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017605"
            },
            {
              "name": "ADV-2007-0521",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0521"
            },
            {
              "name": "trendmicro-tmcomm-privilege-escalation(32353)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32353"
            },
            {
              "name": "1017606",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017606"
            },
            {
              "name": "33039",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/33039"
            },
            {
              "name": "VU#282240",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/282240"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0856",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\\\.\\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070207 Trend Micro TmComm Local Privilege Escalation Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=469"
                },
                {
                  "name": "1017604",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017604"
                },
                {
                  "name": "22448",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22448"
                },
                {
                  "name": "24069",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24069"
                },
                {
                  "name": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432",
                  "refsource": "CONFIRM",
                  "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432"
                },
                {
                  "name": "VU#666800",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/666800"
                },
                {
                  "name": "1017605",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017605"
                },
                {
                  "name": "ADV-2007-0521",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0521"
                },
                {
                  "name": "trendmicro-tmcomm-privilege-escalation(32353)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32353"
                },
                {
                  "name": "1017606",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017606"
                },
                {
                  "name": "33039",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/33039"
                },
                {
                  "name": "VU#282240",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/282240"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0856",
        "datePublished": "2007-02-08T18:00:00.000Z",
        "dateReserved": "2007-02-08T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:34:21.205Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0851 (GCVE-0-2007-0851)

    Vulnerability from nvd – Published: 2007-02-08 18:00 – Updated: 2024-08-07 12:34
    VLAI
    Summary
    Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/id?1017601 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/22449 vdb-entryx_refsource_BID
    http://esupport.trendmicro.com/support/viewxml.do… x_refsource_CONFIRM
    http://securitytracker.com/id?1017603 vdb-entryx_refsource_SECTRACK
    http://www.jpcert.or.jp/at/2007/at070004.txt x_refsource_MISC
    http://secunia.com/advisories/24087 third-party-advisoryx_refsource_SECUNIA
    http://osvdb.org/33038 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2007/0522 vdb-entryx_refsource_VUPEN
    http://jvn.jp/jp/JVN%2377366274/index.html third-party-advisoryx_refsource_JVN
    http://www.kb.cert.org/vuls/id/276432 third-party-advisoryx_refsource_CERT-VN
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2007/0569 vdb-entryx_refsource_VUPEN
    http://securitytracker.com/id?1017602 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/24128 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2007-02-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:34:21.122Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1017601",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017601"
              },
              {
                "name": "22449",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22449"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289"
              },
              {
                "name": "1017603",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017603"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.jpcert.or.jp/at/2007/at070004.txt"
              },
              {
                "name": "24087",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24087"
              },
              {
                "name": "33038",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/33038"
              },
              {
                "name": "ADV-2007-0522",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0522"
              },
              {
                "name": "JVN#77366274",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/jp/JVN%2377366274/index.html"
              },
              {
                "name": "VU#276432",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/276432"
              },
              {
                "name": "20070208 Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470"
              },
              {
                "name": "antivirus-upx-bo(32352)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32352"
              },
              {
                "name": "ADV-2007-0569",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0569"
              },
              {
                "name": "1017602",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017602"
              },
              {
                "name": "24128",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24128"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-02-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1017601",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017601"
            },
            {
              "name": "22449",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22449"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289"
            },
            {
              "name": "1017603",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017603"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.jpcert.or.jp/at/2007/at070004.txt"
            },
            {
              "name": "24087",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24087"
            },
            {
              "name": "33038",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/33038"
            },
            {
              "name": "ADV-2007-0522",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0522"
            },
            {
              "name": "JVN#77366274",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/jp/JVN%2377366274/index.html"
            },
            {
              "name": "VU#276432",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/276432"
            },
            {
              "name": "20070208 Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470"
            },
            {
              "name": "antivirus-upx-bo(32352)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32352"
            },
            {
              "name": "ADV-2007-0569",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0569"
            },
            {
              "name": "1017602",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017602"
            },
            {
              "name": "24128",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24128"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0851",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1017601",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017601"
                },
                {
                  "name": "22449",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22449"
                },
                {
                  "name": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289",
                  "refsource": "CONFIRM",
                  "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289"
                },
                {
                  "name": "1017603",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017603"
                },
                {
                  "name": "http://www.jpcert.or.jp/at/2007/at070004.txt",
                  "refsource": "MISC",
                  "url": "http://www.jpcert.or.jp/at/2007/at070004.txt"
                },
                {
                  "name": "24087",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24087"
                },
                {
                  "name": "33038",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/33038"
                },
                {
                  "name": "ADV-2007-0522",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0522"
                },
                {
                  "name": "JVN#77366274",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/jp/JVN%2377366274/index.html"
                },
                {
                  "name": "VU#276432",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/276432"
                },
                {
                  "name": "20070208 Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470"
                },
                {
                  "name": "antivirus-upx-bo(32352)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32352"
                },
                {
                  "name": "ADV-2007-0569",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0569"
                },
                {
                  "name": "1017602",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017602"
                },
                {
                  "name": "24128",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24128"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0851",
        "datePublished": "2007-02-08T18:00:00.000Z",
        "dateReserved": "2007-02-08T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:34:21.122Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0856 (GCVE-0-2007-0856)

    Vulnerability from cvelistv5 – Published: 2007-02-08 18:00 – Updated: 2024-08-07 12:34
    VLAI
    Summary
    TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\.\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    http://securitytracker.com/id?1017604 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/22448 vdb-entryx_refsource_BID
    http://secunia.com/advisories/24069 third-party-advisoryx_refsource_SECUNIA
    http://esupport.trendmicro.com/support/viewxml.do… x_refsource_CONFIRM
    http://www.kb.cert.org/vuls/id/666800 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1017605 vdb-entryx_refsource_SECTRACK
    http://www.vupen.com/english/advisories/2007/0521 vdb-entryx_refsource_VUPEN
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1017606 vdb-entryx_refsource_SECTRACK
    http://osvdb.org/33039 vdb-entryx_refsource_OSVDB
    http://www.kb.cert.org/vuls/id/282240 third-party-advisoryx_refsource_CERT-VN
    Date Public
    2007-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:34:21.205Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070207 Trend Micro TmComm Local Privilege Escalation Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=469"
              },
              {
                "name": "1017604",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017604"
              },
              {
                "name": "22448",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22448"
              },
              {
                "name": "24069",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24069"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432"
              },
              {
                "name": "VU#666800",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/666800"
              },
              {
                "name": "1017605",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017605"
              },
              {
                "name": "ADV-2007-0521",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0521"
              },
              {
                "name": "trendmicro-tmcomm-privilege-escalation(32353)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32353"
              },
              {
                "name": "1017606",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017606"
              },
              {
                "name": "33039",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/33039"
              },
              {
                "name": "VU#282240",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/282240"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\\\.\\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070207 Trend Micro TmComm Local Privilege Escalation Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=469"
            },
            {
              "name": "1017604",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017604"
            },
            {
              "name": "22448",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22448"
            },
            {
              "name": "24069",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24069"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432"
            },
            {
              "name": "VU#666800",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/666800"
            },
            {
              "name": "1017605",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017605"
            },
            {
              "name": "ADV-2007-0521",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0521"
            },
            {
              "name": "trendmicro-tmcomm-privilege-escalation(32353)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32353"
            },
            {
              "name": "1017606",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017606"
            },
            {
              "name": "33039",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/33039"
            },
            {
              "name": "VU#282240",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/282240"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0856",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\\\.\\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070207 Trend Micro TmComm Local Privilege Escalation Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=469"
                },
                {
                  "name": "1017604",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017604"
                },
                {
                  "name": "22448",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22448"
                },
                {
                  "name": "24069",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24069"
                },
                {
                  "name": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432",
                  "refsource": "CONFIRM",
                  "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034432\u0026id=EN-1034432"
                },
                {
                  "name": "VU#666800",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/666800"
                },
                {
                  "name": "1017605",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017605"
                },
                {
                  "name": "ADV-2007-0521",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0521"
                },
                {
                  "name": "trendmicro-tmcomm-privilege-escalation(32353)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32353"
                },
                {
                  "name": "1017606",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017606"
                },
                {
                  "name": "33039",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/33039"
                },
                {
                  "name": "VU#282240",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/282240"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0856",
        "datePublished": "2007-02-08T18:00:00.000Z",
        "dateReserved": "2007-02-08T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:34:21.205Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0851 (GCVE-0-2007-0851)

    Vulnerability from cvelistv5 – Published: 2007-02-08 18:00 – Updated: 2024-08-07 12:34
    VLAI
    Summary
    Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/id?1017601 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/22449 vdb-entryx_refsource_BID
    http://esupport.trendmicro.com/support/viewxml.do… x_refsource_CONFIRM
    http://securitytracker.com/id?1017603 vdb-entryx_refsource_SECTRACK
    http://www.jpcert.or.jp/at/2007/at070004.txt x_refsource_MISC
    http://secunia.com/advisories/24087 third-party-advisoryx_refsource_SECUNIA
    http://osvdb.org/33038 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2007/0522 vdb-entryx_refsource_VUPEN
    http://jvn.jp/jp/JVN%2377366274/index.html third-party-advisoryx_refsource_JVN
    http://www.kb.cert.org/vuls/id/276432 third-party-advisoryx_refsource_CERT-VN
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2007/0569 vdb-entryx_refsource_VUPEN
    http://securitytracker.com/id?1017602 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/24128 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2007-02-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:34:21.122Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1017601",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017601"
              },
              {
                "name": "22449",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22449"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289"
              },
              {
                "name": "1017603",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017603"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.jpcert.or.jp/at/2007/at070004.txt"
              },
              {
                "name": "24087",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24087"
              },
              {
                "name": "33038",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/33038"
              },
              {
                "name": "ADV-2007-0522",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0522"
              },
              {
                "name": "JVN#77366274",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_JVN",
                  "x_transferred"
                ],
                "url": "http://jvn.jp/jp/JVN%2377366274/index.html"
              },
              {
                "name": "VU#276432",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/276432"
              },
              {
                "name": "20070208 Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470"
              },
              {
                "name": "antivirus-upx-bo(32352)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32352"
              },
              {
                "name": "ADV-2007-0569",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0569"
              },
              {
                "name": "1017602",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017602"
              },
              {
                "name": "24128",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/24128"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-02-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1017601",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017601"
            },
            {
              "name": "22449",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22449"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289"
            },
            {
              "name": "1017603",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017603"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.jpcert.or.jp/at/2007/at070004.txt"
            },
            {
              "name": "24087",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24087"
            },
            {
              "name": "33038",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/33038"
            },
            {
              "name": "ADV-2007-0522",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0522"
            },
            {
              "name": "JVN#77366274",
              "tags": [
                "third-party-advisory",
                "x_refsource_JVN"
              ],
              "url": "http://jvn.jp/jp/JVN%2377366274/index.html"
            },
            {
              "name": "VU#276432",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/276432"
            },
            {
              "name": "20070208 Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470"
            },
            {
              "name": "antivirus-upx-bo(32352)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32352"
            },
            {
              "name": "ADV-2007-0569",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0569"
            },
            {
              "name": "1017602",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017602"
            },
            {
              "name": "24128",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/24128"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0851",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1017601",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017601"
                },
                {
                  "name": "22449",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22449"
                },
                {
                  "name": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289",
                  "refsource": "CONFIRM",
                  "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289"
                },
                {
                  "name": "1017603",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017603"
                },
                {
                  "name": "http://www.jpcert.or.jp/at/2007/at070004.txt",
                  "refsource": "MISC",
                  "url": "http://www.jpcert.or.jp/at/2007/at070004.txt"
                },
                {
                  "name": "24087",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24087"
                },
                {
                  "name": "33038",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/33038"
                },
                {
                  "name": "ADV-2007-0522",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0522"
                },
                {
                  "name": "JVN#77366274",
                  "refsource": "JVN",
                  "url": "http://jvn.jp/jp/JVN%2377366274/index.html"
                },
                {
                  "name": "VU#276432",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/276432"
                },
                {
                  "name": "20070208 Trend Micro AntiVirus UPX Parsing Kernel Buffer Overflow Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=470"
                },
                {
                  "name": "antivirus-upx-bo(32352)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32352"
                },
                {
                  "name": "ADV-2007-0569",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0569"
                },
                {
                  "name": "1017602",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017602"
                },
                {
                  "name": "24128",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/24128"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0851",
        "datePublished": "2007-02-08T18:00:00.000Z",
        "dateReserved": "2007-02-08T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:34:21.122Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }