漏洞标题
N/A
漏洞描述信息
多个缓冲区溢出漏洞,Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX control in OfficeScanSetupINI.dll,在 OfficeScan 7.0 Build 1344之前,OfficeScan 7.3 Build 1241之前,Client / Server / Messaging Security 3.0 Build 1197 之前,使用于 OfficeScan 7.0、7.3 和 3.0版本,允许远程攻击者通过创建的 HTML 文档执行任意代码。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Multiple buffer overflows in the Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX control in OfficeScanSetupINI.dll, as used in OfficeScan 7.0 before Build 1344, OfficeScan 7.3 before Build 1241, and Client / Server / Messaging Security 3.0 before Build 1197, allow remote attackers to execute arbitrary code via a crafted HTML document.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
OfficeScanSetupINI.dll 'Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX'多个缓冲区溢出
漏洞描述信息
OfficeScanSetupINI.dll的Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX控件中存在多个缓冲区溢出。当在OfficeScan Build 1344版本之前的7.0版本, OfficeScan Build 1241版本之前的7.3版本以及Client / Server / Messaging Security Build 1197版本之前的3.0版本中运行时,远程攻击者可以借助一个特制的HTML文件,执行任意代码。
CVSS信息
N/A
漏洞类别
授权问题