Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution

  Severity: CRITICAL
  CVE Identifier: CVE-2008-0080,MS08-007
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Heap-based buffer overflow in the WebDAV Mini-Redirector in Microsoft Windows XP SP2, Server 2003 SP1 and SP2, and Vista allows remote attackers to execute arbitrary code via a crafted WebDAV response.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1001637
  Trend Micro Deep Security DPI Rule Name: 1001637 - WebDAV Mini-Redirector Remote Code Execution

  AFFECTED SOFTWARE AND VERSION

  • Microsoft WebDAV Mini-Redirector