Thursday, February 28, 2008 8:53 AM
cmosby
Trend Micro OfficeScan 8.0 Policy Server Denial of Service - Advisories - Secunia
Trend Micro OfficeScan 8.0 Policy Server Denial of Service
Secunia Advisory:
SA29151
Release Date:
2008-02-28
Critical:
Less critical
Impact:
DoS
Where:
From local network
Solution Status:
Unpatched
Software:
Trend Micro OfficeScan Corporate Edition 8.x
Description:
Luigi Auriemma has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error in PolicyServer.exe and can be exploited to cause the service to terminate via a HTTP request to the cgiABLogon.exe CGI module with a specially crafted, overly long "pwd" parameter. The service then restarts after a few seconds.
Successful exploitation requires that the Trend Micro Policy Server for Cisco NAC is installed.
Other errors e.g. NULL-pointer dereference errors in certain CGI modules when handling HTTP requests containing certain characters or with invalid "Content-Length" headers have also been reported.
The vulnerability is confirmed in version 8.0 with Patch 2 build 1189. Other versions may also be affected.
Solution:
Restrict network access to the web service.
Provided and/or discovered by:
Luigi Auriemma
Original Advisory:
http://aluigi.altervista.org/adv/officescaz-adv.txt
Source: Trend Micro OfficeScan 8.0 Policy Server Denial of Service - Advisories - Secunia
Filed under: AntiVirus Information, Security