The CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via crafted HTTP headers, related to the "error handling mechanism."
Software | From | Fixed in |
---|---|---|
trend_micro / officescan | 8.0-sp1 | 8.0-sp1.x |
trend_micro / officescan | 8.0-sp1_patch1 | 8.0-sp1_patch1.x |