CVE-2007-3873 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in vstlib32.dll 1.2.0.1012 in the SSAPI Engine 5.0.0.1066 through 5.2.0.1012 in Trend Micro AntiSpyware 3.5 and PC-Cillin Internet Security 2007 15.0 through 15.3, when the Venus Spy Trap (VST) feature is enabled, allows local users to cause a denial of service (service crash) or execute arbitrary code via a file with a long pathname, which triggers the overflow during a ReadDirectoryChangesW callback notification.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Trend Micro	Antispyware Pc-cillin Internet Security 2007

Configuration 1 [-]

OR	cpe:2.3:a:trend_micro:antispyware:3.5:::::::*
	cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.0:::::::*
	cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.2:::::::*
	cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.2_patch:::::::*
	cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.3:::::::*

No data.

References

Link	Providers
http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=586
http://secunia.com/advisories/26557
http://securitytracker.com/id?1018592
http://www.securityfocus.com/bid/25388
http://www.vupen.com/english/advisories/2007/2935
https://exchange.xforce.ibmcloud.com/vulnerabilities/36144

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-08-22T23:00:00

Updated: 2024-08-07T14:37:04.135Z

Reserved: 2007-07-18T00:00:00

Link: CVE-2007-3873

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-08-22T23:17:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-3873

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-08-20T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in vstlib32.dll 1.2.0.1012 in the SSAPI Engine 5.0.0.1066 through 5.2.0.1012 in Trend Micro AntiSpyware 3.5 and PC-Cillin Internet Security 2007 15.0 through 15.3, when the Venus Spy Trap (VST) feature is enabled, allows local users to cause a denial of service (service crash) or execute arbitrary code via a file with a long pathname, which triggers the overflow during a ReadDirectoryChangesW callback notification."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845"}, {"name": "antispyware-vstlib-bo(36144)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36144"}, {"name": "25388", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/25388"}, {"name": "ADV-2007-2935", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/2935"}, {"name": "26557", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26557"}, {"name": "1018592", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1018592"}, {"name": "20070820 Trend Micro SSAPI Long Path Buffer Overflow Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=586"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-3873", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in vstlib32.dll 1.2.0.1012 in the SSAPI Engine 5.0.0.1066 through 5.2.0.1012 in Trend Micro AntiSpyware 3.5 and PC-Cillin Internet Security 2007 15.0 through 15.3, when the Venus Spy Trap (VST) feature is enabled, allows local users to cause a denial of service (service crash) or execute arbitrary code via a file with a long pathname, which triggers the overflow during a ReadDirectoryChangesW callback notification."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845", "refsource": "CONFIRM", "url": "http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845"}, {"name": "antispyware-vstlib-bo(36144)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36144"}, {"name": "25388", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25388"}, {"name": "ADV-2007-2935", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/2935"}, {"name": "26557", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26557"}, {"name": "1018592", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1018592"}, {"name": "20070820 Trend Micro SSAPI Long Path Buffer Overflow Vulnerability", "refsource": "IDEFENSE", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=586"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T14:37:04.135Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845"}, {"name": "antispyware-vstlib-bo(36144)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36144"}, {"name": "25388", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/25388"}, {"name": "ADV-2007-2935", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/2935"}, {"name": "26557", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/26557"}, {"name": "1018592", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1018592"}, {"name": "20070820 Trend Micro SSAPI Long Path Buffer Overflow Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=586"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-3873", "datePublished": "2007-08-22T23:00:00", "dateReserved": "2007-07-18T00:00:00", "dateUpdated": "2024-08-07T14:37:04.135Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trend_micro:antispyware:3.5:*:*:*:*:*:*:*", "matchCriteriaId": "CA43906A-1172-4155-8815-896D3973C712", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.0:*:*:*:*:*:*:*", "matchCriteriaId": "E38ED6F1-56A1-47CB-95DD-2850C749EC66", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.2:*:*:*:*:*:*:*", "matchCriteriaId": "BB1FCACF-F8FF-47A7-A560-D35B4AB5F64A", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.2_patch:*:*:*:*:*:*:*", "matchCriteriaId": "43ED8EF9-9DC7-4033-9636-8840E8645B1E", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:15.3:*:*:*:*:*:*:*", "matchCriteriaId": "E2EEFFA7-F7B4-4743-BEE5-4DABF2CB4F6B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in vstlib32.dll 1.2.0.1012 in the SSAPI Engine 5.0.0.1066 through 5.2.0.1012 in Trend Micro AntiSpyware 3.5 and PC-Cillin Internet Security 2007 15.0 through 15.3, when the Venus Spy Trap (VST) feature is enabled, allows local users to cause a denial of service (service crash) or execute arbitrary code via a file with a long pathname, which triggers the overflow during a ReadDirectoryChangesW callback notification."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en vstlib32.dll 1.2.0.1012 en SSAPI Engine 5.0.0.1066 hasta 5.2.0.1012 en Trend Micro AntiSpyware 3.5 y PC-Cillin Internet Security 2007 15.0 hasta 15.3, cuando la caracter\u00edstica Venus Spy Trap (VST) est\u00e1 habilitada, permite a usuarios locales provocar una denegaci\u00f3n de servicio (ca\u00edda del servicio) o ejecutar c\u00f3digo de su elecci\u00f3n mediante un fichero con un nombre de ruta largo, lo cual provoca el desbordamiento durante una notificaci\u00f3n ReadDirectoryChangesW recurrente."}], "id": "CVE-2007-3873", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-08-22T23:17:00.000", "references": [{"source": "cve@mitre.org", "url": "http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845"}, {"source": "cve@mitre.org", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=586"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/26557"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://securitytracker.com/id?1018592"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/25388"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/2935"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36144"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://esupport.trendmicro.com/support/consumer/search.do?cmd=displayKC&externalId=PUB-en-1035845"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=586"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/26557"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://securitytracker.com/id?1018592"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/25388"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/2935"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36144"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}