Trend Micro ServerProtect Management Console isaNVWRequest.dll chunked POST buffer overflow

Added: 01/24/2006
CVE: CVE-2005-1929
BID: 15865
OSVDB: 21771

Background

ServerProtect is a virus scanner for servers.

Problem

A buffer overflow in ServerProtect Management Console could allow a remote attacker to execute commands using a chunked POST request to isaNVWRequest.dll.

Resolution

Use the workaround described in the iDEFENSE advisory.

References

http://www.idefense.com/intelligence/vulnerabilities/display.php?id=353

Limitations

Works on Trend Micro Control Manager 3.0. Since this is a heap overflow, the success of the exploit depends on the system state.

Platforms

Windows 2000

Back to exploit index