Trend Micro OfficeScan OfficeScanSetupINI.dll Remote Buffer Overflow
High Nessus Plugin ID 24683
SynopsisThe remote Windows host is affected by a remote buffer overflow vulnerability.
DescriptionThe remote host is running Trend Micro Antivirus, a commercial anti- virus software package for Windows.
The remote version of the installed antivirus is vulnerable to a remote buffer overflow attack.
The issue exists due a vulnerability in the ActiveX control installed by the OfficeScan server during a web install of the OfficeScan clients. The clients cache this ActiveX control, which can be exploited by a malicious website. The attacker can trigger this issue by enticing a user to click on a malicious link or sending the link in an email and urging the user to click on it. Successful exploitation of this issue might result in arbitrary code execution.
SolutionApply the security patch released by the vendor.