Main Vulnerability Database Vulnerabilities #VU38605

Input validation error in OfficeScan - CVE-2017-11393

Published: August 3, 2017 / Updated: August 8, 2020

Vulnerability identifier: #VU38605

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2017-11393

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Trend Micro

Affected software:
OfficeScan

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the tr parameter within Proxy.php. Formerly ZDI-CAN-4543.

How to mitigate CVE-2017-11393

Install update from vendor's website.

Sources

http://www.securityfocus.com/bid/100127
http://www.zerodayinitiative.com/advisories/ZDI-17-522
https://success.trendmicro.com/solution/1117769

Input validation error in OfficeScan - CVE-2017-11393

Detailed vulnerability description

How to mitigate CVE-2017-11393

Sources

Please verify you're human