CVE-2017-14085
N/A
N/A
Summary
Information disclosure vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to query the network's NT domain or the PHP version and modules.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Trend Micro | Trend Micro OfficeScan | 11.0, XG (12.0) | affected |
Weaknesses
- Information Disclosure
ADP Enrichment
CVE Program Container
Additional References
- https://success.trendmicro.com/solution/1118372
- http://seclists.org/fulldisclosure/2017/Sep/85
- http://packetstormsecurity.com/files/144402/TrendMicro-OfficeScan-11.0-XG-12.0-Information-Disclosure.html
- https://www.exploit-db.com/exploits/42893/
- http://www.securityfocus.com/archive/1/541281/100/0/threaded
- http://hyp3rlinx.altervista.org/advisories/CVE-2017-14085-TRENDMICRO-OFFICESCAN-XG-REMOTE-NT-DOMAIN-PHP-INFO-DISCLOSURE.txt
- http://www.securitytracker.com/id/1039500
- http://www.securityfocus.com/bid/101076
References
- https://success.trendmicro.com/solution/1118372
- http://seclists.org/fulldisclosure/2017/Sep/85
- http://packetstormsecurity.com/files/144402/TrendMicro-OfficeScan-11.0-XG-12.0-Information-Disclosure.html
- https://www.exploit-db.com/exploits/42893/
- http://www.securityfocus.com/archive/1/541281/100/0/threaded
- http://hyp3rlinx.altervista.org/advisories/CVE-2017-14085-TRENDMICRO-OFFICESCAN-XG-REMOTE-NT-DOMAIN-PHP-INFO-DISCLOSURE.txt
- http://www.securitytracker.com/id/1039500
- http://www.securityfocus.com/bid/101076
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.