CVE-2006-1379
https://notcve.org/view.php?id=CVE-2006-1379
Trend Micro PC-cillin Internet Security 2006 14.00.1485 and 14.10.0.1023, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying executable programs such as (1) tmntsrv.exe and (2) tmproxy.exe. • http://secunia.com/advisories/19282 http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english http://www.vupen.com/english/advisories/2006/1042 •
CVE-2005-3360
https://notcve.org/view.php?id=CVE-2005-3360
The installation of Trend Micro PC-Cillin Internet Security 2005 12.00 build 1244, and probably previous versions, uses insecure default ACLs, which allows local users to cause a denial of service (disabled service) and gain system privileges by modifying or moving critical program files. La instalación de Tren Micro PC Cillin Internet Security 2005 12.00 compilación 1244, y posiblemente versiones anteriores, utiliza ACLs (Listas de Control de Acceso) por defecto inseguras, lo que permite a usuarios locales causar una denegación de servicio (servicio deshabilitado) y ganar privilegios de sistema modificando o moviendo archivos de programa críticos. • http://secunia.com/advisories/18044 http://securitytracker.com/id?1015357 http://www.idefense.com/application/poi/display?id=351&type=vulnerabilities http://www.securityfocus.com/bid/15872 http://www.vupen.com/english/advisories/2005/2906 •
CVE-2005-3379
https://notcve.org/view.php?id=CVE-2005-3379
Multiple interpretation error in Trend Micro (1) PC-Cillin 2005 12.0.1244 with the 7.510.1002 engine and (2) OfficeScan 7.0 with the 7.510.1002 engine allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a "triple headed" program that contains EXE, EML, and HTML content, aka the "magic byte bug." • http://marc.info/?l=bugtraq&m=113026417802703&w=2 http://www.securityelf.org/magicbyte.html http://www.securityelf.org/magicbyteadv.html http://www.securityelf.org/updmagic.html http://www.securityfocus.com/archive/1/415173 http://www.securityfocus.com/bid/15189 •
CVE-2005-0533
https://notcve.org/view.php?id=CVE-2005-0533
Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple Trend Micro products, allows remote attackers to execute arbitrary code via a crafted ARJ file with long header file names that modify pointers within a structure. • http://secunia.com/advisories/14396 http://securitytracker.com/id?1013289 http://securitytracker.com/id?1013290 http://www.securityfocus.com/bid/12643 http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+VSAPI+ARJ+parsing+could+allow+Remote+Code+execution http://xforce.iss.net/xforce/alerts/id/189 •
CVE-2002-1349 – Trend Micro PC-cillin 2000/2002/2003 - Mail Scanner Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1349
Buffer overflow in pop3trap.exe for PC-cillin 2000, 2002, and 2003 allows local users to execute arbitrary code via a long input string to TCP port 110 (POP3). Desbordamiento de búfer en pop3trap.exe en PC-cillin 2000, 2002, y 2003 permite a usuarios locales la ejecución arbitraria de código mediante una cadena de caracteres larga de entrada en el puerto TCP 110 (POP3). • https://www.exploit-db.com/exploits/22082 http://kb.trendmicro.com/solutions/solutionDetail.asp?solutionId=12982 http://marc.info/?l=bugtraq&m=103953822705917&w=2 http://www.kb.cert.org/vuls/id/157961 http://www.securityfocus.com/bid/6350 http://www.texonet.com/advisories/TEXONET-20021210.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/10814 •