Trend Micro OfficeScan 6.0 in Client/Server/Messaging (CSM) Suite for SMB 2.0 before 6.0.0.1385, and OfficeScan Corporate Edition (OSCE) 6.5 before 6.5.0.1418, 7.0 before 7.0.0.1257, and 7.3 before 7.3.0.1053 allow remote attackers to remove OfficeScan clients via a certain HTTP request that invokes the OfficeScan CGI program.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Officescan_corporate_edition | Trend_micro | 6.5 (including) | 6.5 (including) |
| Officescan_corporate_edition | Trend_micro | 7.0 (including) | 7.0 (including) |
| Officescan_corporate_edition | Trend_micro | 7.3 (including) | 7.3 (including) |
References
- http://secunia.com/advisories/22156
- http://www.securityfocus.com/bid/20330
- http://www.trendmicro.com/download/product.asp?productid=5
- http://www.trendmicro.com/ftp/documentation/readme/csm_2.0_osce_6.0_win_en_securitypatch_1385_readme.txt
- http://www.trendmicro.com/ftp/documentation/readme/osce_6.5_win_en_securitypatch_1418_readme.txt
- http://www.trendmicro.com/ftp/documentation/readme/osce_7.3_win_en_securitypatch_1053_readme.txt
- http://www.trendmicro.com/ftp/documentation/readme/osce_70_win_en_securitypatch_1257_readme.txt
- http://www.vupen.com/english/advisories/2006/3882
- http://secunia.com/advisories/22156
- http://www.securityfocus.com/bid/20330
- http://www.trendmicro.com/download/product.asp?productid=5
- http://www.trendmicro.com/ftp/documentation/readme/csm_2.0_osce_6.0_win_en_securitypatch_1385_readme.txt
- http://www.trendmicro.com/ftp/documentation/readme/osce_6.5_win_en_securitypatch_1418_readme.txt
- http://www.trendmicro.com/ftp/documentation/readme/osce_7.3_win_en_securitypatch_1053_readme.txt
- http://www.trendmicro.com/ftp/documentation/readme/osce_70_win_en_securitypatch_1257_readme.txt
- http://www.vupen.com/english/advisories/2006/3882