CVE-2003-0646: Buffer Overflow
First published: Tue Aug 05 2003(Updated: )
Multiple buffer overflows in ActiveX controls used by Trend Micro HouseCall 5.5 and 5.7, and Damage Cleanup Server 1.0, allow remote attackers to execute arbitrary code via long parameter strings.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Trend Micro HouseCall | =5.5 | |
| Trend Micro HouseCall | =5.7 | |
| Trend Micro Damage Cleanup Server | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2003-0646?
CVE-2003-0646 has a high severity rating due to its potential to allow remote execution of arbitrary code.
How do I fix CVE-2003-0646?
To fix CVE-2003-0646, ensure you are using the latest patched version of Trend Micro HouseCall or Damage Cleanup Server.
Which versions are affected by CVE-2003-0646?
CVE-2003-0646 affects Trend Micro HouseCall versions 5.5 and 5.7, as well as Damage Cleanup Server version 1.0.
What types of attacks can exploit CVE-2003-0646?
CVE-2003-0646 can be exploited through crafted parameter strings that trigger buffer overflows.
Is CVE-2003-0646 still a risk today?
While CVE-2003-0646 was identified years ago, systems still using the vulnerable software versions remain at risk.
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- vendor/trend micro
- canonical/trend micro housecall
- version/trend micro housecall/5.5
- version/trend micro housecall/5.7
- canonical/trend micro damage cleanup server
- version/trend micro damage cleanup server/1.0