If you don't want to receive our marketing information, please click here, we will promptly delete it.
If you are willing to receive our upcoming marketing information, please don't make any reply.

Security Update
Vulnerabilities on Trend Micro OfficeScan CGI Modules

Description
Two Vulnerabilities was found in Trend Micro OfficeScan

1) Buffer overflow error in the CGI modules (CGIOCommon.dll) can be exploited by attackers for execute arbitrary code with privileges of the web user.

2) Error in Authentication process (cgiChkMasterPwd.exe) within the OfficeScan Management Console can be exploited by attackers to bypass authentication and gain unauthorized access to the OfficeScan management Console.

Product affected

OfficeScan 7.0
OfficeScan 7.3
OfficeScan 8.0

Solution

It is suggested to apply latest patches immediately.

OfficeScan 7.0:
http://www.trendmicro.com/ftp/products/patches/osce_70_win_en_securitypatch_b1364.exe

OfficeScan 7.3:

http://www.trendmicro.com/ftp/products/patches/osce_73_win_en_securitypatch_b1293.exe

OfficeScan 8.0:
http://www.trendmicro.com/ftp/products/patches/osce_80_win_en_securitypatch-b1042.exe

Source
TrendMicro

Suggested Solutions
Patch Management System: Shavlik's HFNetChkPro, Patchlink's PatchLink Update, Altiris Client Management Suite

Free Seminar (Seats are Limited !!)
Barracuda - Reclaim Your Email & Secure Your Network in Today's Enterprise
Product Update

1 : Citrix- The Secrets of Successful Application Delivery
 2 : Hosted Exchange Service

 

Enquiry Hotline: 2102 5894    Email: marketing@nexus-hk.com
If you don't want to receive our marketing information, please click here, we will promptly delete it. All the above informations are for reference only.
If you are willing to receive our upcoming marketing information, please don't make any reply.