VYPR
Unrated severityNVD Advisory· Published Jan 21, 2009· Updated Jun 16, 2026

CVE-2008-3865

CVE-2008-3865

Description

Multiple heap-based buffer overflows in the ApiThread function in the firewall service (aka TmPfw.exe) in Trend Micro Network Security Component (NSC) modules, as used in Trend Micro OfficeScan 8.0 SP1 Patch 1 and Internet Security 2007 and 2008 17.0.1224, allow remote attackers to execute arbitrary code via a packet with a small value in an unspecified size field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:trend_micro:internet_security_2007:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:trend_micro:internet_security_2007:*:*:*:*:*:*:*:*
    • cpe:2.3:a:trend_micro:internet_security_2008:17.0.1224:*:*:*:*:*:*:*
    • (no CPE)range: 2007 and 2008 17.0.1224
  • cpe:2.3:a:trend_micro:officescan:8.0:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:trend_micro:officescan:8.0:sp1:*:*:*:*:*:*
    • (no CPE)range: 8.0 SP1 Patch 1

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.