CVE-2007-2533

Name of the Vulnerable Software and Affected Versions Trend Micro ServerProtect version 5.58 before Security Patch 2- Build 1174

Description The issue is related to multiple buffer overflows that allow remote attackers to execute arbitrary code. This is achieved through a crafted RPC message processed by specific functions in certain DLL files. The affected functions include the RPCFN ActiveRollback function in stcommon.dll, and the ENG SetRealTimeScanConfigInfo or ENG SendEmail functions in eng50.dll.

Recommendations For Trend Micro ServerProtect version 5.58 before Security Patch 2- Build 1174, apply Security Patch 2- Build 1174 to resolve the issue. As a temporary workaround, consider restricting access to the RPCFN ActiveRollback function in stcommon.dll, and the ENG SetRealTimeScanConfigInfo or ENG SendEmail functions in eng50.dll to minimize the risk of exploitation.