4 matches found
CVE-2017-14094
A vulnerability in Trend Micro Smart Protection Server Standalone versions 3.2 and below could allow an attacker to perform remote command execution via a cron job injection on a vulnerable system...
CVE-2017-14094
A vulnerability in Trend Micro Smart Protection Server Standalone versions 3.2 and below could allow an attacker to perform remote command execution via a cron job injection on a vulnerable system...
CVE-2017-14094
CVE-2017-14094 affects Trend Micro Smart Protection Server (Standalone) up to version 3.2. It enables remote command execution via cron job injection in the admin_update_program.php flow when updates are scheduled, due to unsanitized HTTP parameters used to build cron entries. The vulnerability i...
Trend Micro Smart Protection Server 3.2 XSS / Access Control / Disclosure
Advisory Information Title: Trend Micro Smart Protection Server Multiple Vulnerabilities Advisory ID: CORE-2017-0008 Advisory URL: http://www.coresecurity.com/advisories/trend-micro-smart-protection-server-multiple-vulnerabilities Date published: 2017-12-19 Date of last update: 2017-12-11...