Vulnerabilities

NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1... (PC1-2009-1150)

Vulnerability chart	Risk level Low Medium High Extreme Severe Warning: security vulnerability level = extreme 13 vulnerabilities(-y) found between 25 February, 2005 and 27 April, 2009. This software protects your desktops, laptops, and file servers. Also,... more See also: Trend Micro OfficeScan Corporate Edition, OfficeScan Corporate Edition A vulnerability was found in NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1.
DDOS Unknown patch availability Patch implementation unknown

Description:	By using this type of vulnerability, local users are able to cause a denial of service, that is application crash through directories having long pathnames. It should be noted that some of these details are gained from third party information.
Impact:	With the help of this vulnerability, a service can be broken up.
References:	http://www.vupen.com/english/advisories/2009/1146 http://www.securitytracker.com/id?1022109 http://www.securityfocus.com/bid/34642 http://www.securityfocus.com/archive/1/archive/1/502860/100/0/threaded http://secunia.com/advisories/34737 http://osvdb.org/53890 http://es.geocities.com/jplopezy/officescan.zip

CVSS Severity		CVSS Version 2 Metrics:
CVSS v2 Base Score:	2.1 (LOW)	Access Vector:	N/A
Impact Subscore:	2.9	Access Complexity:	Low
Exploitability Subscore:	3.9	Authentication:	Not required to exploit
		Impact Type:	Allows disruption of serviceUnknown