SB2021012631 - Denial of service in Trend Micro ServerProtect for Linux

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Resource exhaustion (CVE-ID: CVE-2021-25224)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

Three vulnerabilities exists due to application does not properly control consumption of internal resources within the splx_manual_scan executable. A local user can trigger resource exhaustion and perform a denial of service (DoS) attack.

2) Resource exhaustion (CVE-ID: CVE-2021-25225)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application does not properly control consumption of internal resources within the splx_schedule_scan executable. A remote attacker can trick the victim to open a specially crafted file, trigger resource exhaustion and perform a denial of service (DoS) attack.

3) Resource exhaustion (CVE-ID: CVE-2021-25226)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application does not properly control consumption of internal resources within the vsapiapp executable. A remote attacker can trick the victim to open a specially crafted file, trigger resource exhaustion and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://success.trendmicro.com/solution/000284207
• https://www.zerodayinitiative.com/advisories/ZDI-21-086/
• https://www.zerodayinitiative.com/advisories/ZDI-21-087/