CVE-2007-3454| Date: (C)2007-06-26 (M)2017-08-01 |
| |
| CVSS Score: 10.0 | Access Vector: NETWORK |
| Exploitability Subscore: 10.0 | Access Complexity: LOW |
| Impact Subscore: 10.0 | Authentication: NONE |
| | Confidentiality: COMPLETE |
| | Integrity: COMPLETE |
| | Availability: COMPLETE |
Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonstrated using a long session cookie to unspecified CGI programs that use this library.
