Trend Micro » Housecall : Security Vulnerabilities, CVEs,
Use-after-free vulnerability in the Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in Housecall_ActiveX.dll allows remote attackers to execute arbitrary code via a crafted notifyOnLoadNative callback function.
Max CVSS
9.3
EPSS Score
30.31%
Published
2008-12-23
Updated
2018-10-11
The Trend Micro HouseCall ActiveX control 6.51.0.1028 and 6.6.0.1278 in Housecall_ActiveX.dll allows remote attackers to download an arbitrary library file onto a client system via a "custom update server" argument. NOTE: this can be leveraged for code execution by writing to a Startup folder.
Max CVSS
9.3
EPSS Score
30.31%
Published
2008-12-23
Updated
2018-10-11
Multiple buffer overflows in ActiveX controls used by Trend Micro HouseCall 5.5 and 5.7, and Damage Cleanup Server 1.0, allow remote attackers to execute arbitrary code via long parameter strings.
Max CVSS
7.5
EPSS Score
2.42%
Published
2003-08-27
Updated
2008-09-10
3 vulnerabilities found