CVE-2007-6386 - OpenCVE

Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service (SfCtlCom.exe crash), and allows local users to gain privileges, via a malformed .zip archive with a long name, as demonstrated by a .zip file created via format string specifiers in a crafted .uue file.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Trend Micro	Trend Micro Antivirus Plus Antispyware Trend Micro Internet Security Virus Bust Trend Micro Internet Security Pro

Configuration 1 [-]

OR	cpe:2.3:a:trend_micro:trend_micro_antivirus_plus_antispyware:2008:bld_1450::::::
	cpe:2.3:a:trend_micro:trend_micro_internet_security__virus_bust:2008:bld_1451::::::
	cpe:2.3:a:trend_micro:trend_micro_internet_security_pro::::::::

No data.

References

Link	Providers
http://esupport.trendmicro.com/support/viewxml.do?ContentID=1036464
http://osvdb.org/39769
http://osvdb.org/39770
http://secunia.com/advisories/28038
http://secway.org/advisory/AD20071211.txt
http://www.securitytracker.com/id?1019079
http://www.vupen.com/english/advisories/2007/4191
https://exchange.xforce.ibmcloud.com/vulnerabilities/38982

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-12-15T02:00:00

Updated: 2024-08-07T16:02:36.984Z

Reserved: 2007-12-14T00:00:00

Link: CVE-2007-6386

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-12-15T02:46:00.000

Modified: 2017-08-08T01:29:07.697

Link: CVE-2007-6386

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-12-10T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service (SfCtlCom.exe crash), and allows local users to gain privileges, via a malformed .zip archive with a long name, as demonstrated by a .zip file created via format string specifiers in a crafted .uue file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "28038", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28038"}, {"name": "ADV-2007-4191", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/4191"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=1036464"}, {"name": "trendmicro-pccscan-zip-bo(38982)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38982"}, {"tags": ["x_refsource_MISC"], "url": "http://secway.org/advisory/AD20071211.txt"}, {"name": "39769", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/39769"}, {"name": "1019079", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1019079"}, {"name": "39770", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/39770"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-6386", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service (SfCtlCom.exe crash), and allows local users to gain privileges, via a malformed .zip archive with a long name, as demonstrated by a .zip file created via format string specifiers in a crafted .uue file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "28038", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28038"}, {"name": "ADV-2007-4191", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/4191"}, {"name": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=1036464", "refsource": "CONFIRM", "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=1036464"}, {"name": "trendmicro-pccscan-zip-bo(38982)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38982"}, {"name": "http://secway.org/advisory/AD20071211.txt", "refsource": "MISC", "url": "http://secway.org/advisory/AD20071211.txt"}, {"name": "39769", "refsource": "OSVDB", "url": "http://osvdb.org/39769"}, {"name": "1019079", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1019079"}, {"name": "39770", "refsource": "OSVDB", "url": "http://osvdb.org/39770"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T16:02:36.984Z"}, "title": "CVE Program Container", "references": [{"name": "28038", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/28038"}, {"name": "ADV-2007-4191", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/4191"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=1036464"}, {"name": "trendmicro-pccscan-zip-bo(38982)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38982"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://secway.org/advisory/AD20071211.txt"}, {"name": "39769", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/39769"}, {"name": "1019079", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1019079"}, {"name": "39770", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/39770"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-6386", "datePublished": "2007-12-15T02:00:00", "dateReserved": "2007-12-14T00:00:00", "dateUpdated": "2024-08-07T16:02:36.984Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trend_micro:trend_micro_antivirus_plus_antispyware:2008:bld_1450:*:*:*:*:*:*", "matchCriteriaId": "20BF6A4C-F9B3-416A-A6D9-89A17CF95E5E", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:trend_micro_internet_security__virus_bust:2008:bld_1451:*:*:*:*:*:*", "matchCriteriaId": "810E8007-9115-49BA-9EEF-31E5FA8A3083", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:trend_micro_internet_security_pro:*:*:*:*:*:*:*:*", "matchCriteriaId": "DC162A34-F6A4-4519-A29D-14C34FBFB15C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in PccScan.dll before build 1451 in Trend Micro AntiVirus plus AntiSpyware 2008, Internet Security 2008, and Internet Security Pro 2008 allows user-assisted remote attackers to cause a denial of service (SfCtlCom.exe crash), and allows local users to gain privileges, via a malformed .zip archive with a long name, as demonstrated by a .zip file created via format string specifiers in a crafted .uue file."}, {"lang": "es", "value": "Desbordamiento de buffer relacionado con la pila en PccScan.dll, en versiones anteriores a la build 1451 de Trend Micro AntiVirus, adem\u00e1s de AntiSpyware 2008, Internet Security 2008, e Internet Security Pro 2008. Permite que atacantes remotos con intervenci\u00f3n del usuario provoquen una denegaci\u00f3n de serivio (por ca\u00edda de SfCtlCom.exe), y que usuarios locales ganen privilegios, usando un archivo .zip mal formado, con un nombre largo, tal y como se demuestra con un fichero .zip creado a partir de especificadores de cadenas de formato, en un fichero .uue manipulado."}], "id": "CVE-2007-6386", "lastModified": "2017-08-08T01:29:07.697", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-12-15T02:46:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://esupport.trendmicro.com/support/viewxml.do?ContentID=1036464"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/39769"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/39770"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/28038"}, {"source": "cve@mitre.org", "url": "http://secway.org/advisory/AD20071211.txt"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1019079"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/4191"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38982"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}