CVE-2017-14087

Summary

A Host Header Injection vulnerability in Trend Micro OfficeScan XG (12.0) may allow an attacker to spoof a particular Host header, allowing the attacker to render arbitrary links that point to a malicious website with poisoned Host header webpages.

Affected Software

VendorProductVersion RangeStatus
Trend MicroTrend Micro OfficeScanXG (12.0)affected

Weaknesses

  • Host Header Injection

ADP Enrichment

CVE Program Container

Additional References

References