Trend Micro OfficeScan DoS Vulnerabilities

cgiRqCfg.exe provides to the client configuration settings which will disable scanning on all removable, fixed, and CDrom drives, and further will disable scanning for all files except those with the extension "YES IT's P0SS1bl3!"

cgiOnStart.exe will need to be put on the attacking webserver as the client expects it.

Tr3ndAtt4ck.sh will replay the request to the client, and may be launched from any machine. Modify for your installation and desired client response.

Trend Micro Officescan Denial of Service (tmosdos.zip) was contributed by Marc Ruef <marc.ruef@computec.ch>. This tool is a pre-compiled Windows binary with Visual Basic source.


 

Privacy Statement
Copyright 2010, SecurityFocus