Main Vulnerability Database SB2017111606

SB2017111606 - Remote code execution in Trend Micro OfficeScan

Published: November 16, 2017

Security Bulletin ID SB2017111606

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) OS command injection (CVE-ID: CVE-2017-11394)

The vulnerability allows a remote attacker to execute arbitrary system commands on the target system.

The vulnerability exists due to insufficient filtration of user-supplied data passed via the "T" parameter to Proxy.php script. A remote unauthenticated attacker can execute arbitrary commands on the affected system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Remediation

Install update from vendor's website.

References

https://success.trendmicro.com/solution/1117769
https://www.exploit-db.com/exploits/42971/