header-logo
Suggest Exploit
vendor:
OfficeScan Client
by:
SecurityFocus
7.5
CVSS
HIGH
Denial-of-Service
400
CWE
Product Name: OfficeScan Client
Affected Version From: OfficeScan 8.0 SP1
Affected Version To: Other versions may also be affected.
Patch Exists: Yes
Related CWE: N/A
CPE: a:trend_micro:officescan_client
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Trend Micro OfficeScan Client Denial-of-Service Vulnerability

The Trend Micro OfficeScan Client is prone to a denial-of-service vulnerability because it fails to handle nested directories with excessively long names. Successfully exploits will crash the affected application, resulting in a denial-of-service condition. Given the nature of this issue, code execution may be possible, but has not been confirmed.

Mitigation:

Upgrade to the latest version of the Trend Micro OfficeScan Client.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/34642/info

The Trend Micro OfficeScan Client is prone to a denial-of-service vulnerability because it fails to handle nested directories with excessively long names.

Successfully exploits will crash the affected application, resulting in a denial-of-service condition. Given the nature of this issue, code execution may be possible, but has not been confirmed.

OfficeScan 8.0 SP1 is vulnerable; other versions may also be affected. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/32939.zip

Navigation

Suggest Exploit

Services By CQR