2 matches found
CVE-2017-14095
CVE-2017-14095 affects Trend Micro Smart Protection Server (Standalone) up to version 3.2/3.3 as per multiple sources. The vulnerability enables remote command execution via local file inclusion (LFI) in the web UI, with demonstrated attack vectors that include: session hijacking to obtain an act...
Trend Micro Smart Protection Server 3.2 XSS / Access Control / Disclosure
Advisory Information Title: Trend Micro Smart Protection Server Multiple Vulnerabilities Advisory ID: CORE-2017-0008 Advisory URL: http://www.coresecurity.com/advisories/trend-micro-smart-protection-server-multiple-vulnerabilities Date published: 2017-12-19 Date of last update: 2017-12-11...