Information disclosure vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to query the network’s NT domain or the PHP version and modules.
[
{
"product": "Trend Micro OfficeScan",
"vendor": "Trend Micro",
"versions": [
{
"status": "affected",
"version": "11.0, XG (12.0)"
}
]
}
]
hyp3rlinx.altervista.org/advisories/CVE-2017-14085-TRENDMICRO-OFFICESCAN-XG-REMOTE-NT-DOMAIN-PHP-INFO-DISCLOSURE.txt
packetstormsecurity.com/files/144402/TrendMicro-OfficeScan-11.0-XG-12.0-Information-Disclosure.html
seclists.org/fulldisclosure/2017/Sep/85
www.securityfocus.com/archive/1/541281/100/0/threaded
www.securityfocus.com/bid/101076
www.securitytracker.com/id/1039500
success.trendmicro.com/solution/1118372
www.exploit-db.com/exploits/42893/