1. Home
  2. CVE Database
  3. CVE-2007-3454
HIGH · 10.0

CVE-2007-3454

Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonstr...

Vulnerability Description

Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonstrated using a long session cookie to unspecified CGI programs that use this library.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
Trend MicroOfficescan7.3

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2007-3454?

CVE-2007-3454 is a vulnerability with a CVSS score of 10.0 (HIGH). Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonstr...

How severe is CVE-2007-3454?

CVE-2007-3454 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-3454?

Check the references section above for vendor advisories and patch information. Affected products include: Trend Micro Officescan.