CVE-2018-10507
N/A
N/A
Summary
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have administrator privileges in order to exploit this vulnerability.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Trend Micro | Trend Micro OfficeScan | 11.0 SP1, XG | affected |
Weaknesses
- Insecure Permissions
ADP Enrichment
CVE Program Container
Additional References
- http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txt
- https://success.trendmicro.com/solution/1119961
- https://www.exploit-db.com/exploits/44858/
References
- http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txt
- https://success.trendmicro.com/solution/1119961
- https://www.exploit-db.com/exploits/44858/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.