KLA10368
Multiple vulnerabilities in Trend Micro HouseCall
Updated: 06/01/2019
Detect date
?
12/23/2008
Severity
?
Critical
Description

Multiple critical vulnerabilities have been found in Trend Micro HouseCall. Malicious users can exploit these vulnerabilities to execute arbitrary code or download arbitrary files. Below is a complete list of vulnerabilities

  1. A use-after-free vulnerability can be exploited remotely via a specially designed callback function;
  2. An unspecified vulnerability can be exploited remotely via a specially designed update server.
Affected products

Trend Micro HouseCall versions 6.51.0.1028 and 6.6.0.1278

Solution

Update to latest version

Impacts
?
ACE 
[?]

WLF 
[?]
CVE-IDS
?
CVE-2008-24359.3Critical
CVE-2008-24349.3Critical