[Vulnerability Response] Buffer overflow in OfficeScan clients
 

Solution ID:

 EN-1034288

Product:

 Client Server Messaging Security for SMB - 3.0, 3.5; OfficeScan - 7.3; OfficeScan Corporate Edition - 5.58, 6.5; OfficeScan - 7.0
Operating System:
 Windows 2000 Advanced Server - SP4; Windows XP Professional Edition - SP1; Windows 2000 Server - SP4

Published:

 7/18/2009 1:22 AM 
 

Problem:

If you had installed OfficeScan clients using the web deployment method, the client machines would cache the ActiveX control, which is vulnerable and may cause buffer overflow. This leads to the following issues:

 

Internet Explorer would crash when users browse to a malicious web page

 

An attacker is able to execute arbitrary code on the application

 
 

The vulnerability affects the following products:

OfficeScan 7.3 / 7.0 / 6.5

Client Server Messaging Security 3.5 / 3.0 / 2.0

   

This does not affect OfficeScan clients that were not installed via the web deployment method.
 

Solution:
Public
 

To address this issue, download and apply the security patches for the following products:

 

OSCE 6.5 - Build 1448

 

OfficeScan 7.0 - Build 1349

OfficeScan 7.3 - Build 1247

OfficeScan 6.0 in Client / Server / Messaging Suite for SMB 2.0 - Build 1393

Client Server Messaging Security 3.0 - Build 1198

Client Server Messaging Security 3.5 - Build 1140

 

As a workaround, remove the Trend Micro OfficeScan ActiveX control from Internet Explorer manually.

 

If you suspect that you have been affected by this vulnerability, contact your Technical Account Manager or the Trend Micro Technical Support in your region.

Rate this Solution
Did this article help you?           Comments:
 Yes     No
         
           
            This form uses an automated system and does not provide feedback.