Lucene search
PRIOn knowledge basePRION:CVE-2017-11394HistoryAug 03, 2017 - 3:29 p.m.
Command injection
2017-08-0315:29:00
PRIOn knowledge base
www.prio-n.com
4
0.647 Medium
EPSS
Percentile
97.9%
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the T parameter within Proxy.php. Formerly ZDI-CAN-4544.
| CPE | Name | Operator | Version |
|---|---|---|---|
| officescan | eq | 12.0 | |
| officescan | eq | 11.0 sp1 |
Related
cvelist
cvelist
CVE-2017-11394
2017-07-20 00:00:00
nvd
nvd
CVE-2017-11394
2017-08-03 15:29:00
cve
cve
CVE-2017-11394
2017-08-03 15:29:00
zdi
zdi
checkpoint_advisories
checkpoint_advisories
openvas
openvas
Trend Micro OfficeScan RCE And XSS Vulnerabilities (1117762)
2018-06-27 00:00:00
dsquare
dsquare
Trend Micro OfficeScan Proxy.php RCE
2017-09-02 00:00:00