4 matches found
CVE-2020-24561
A command injection vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow an attacker to execute arbitrary code on an affected system. An attacker must first obtain admin/root privileges on the SPLX console to exploit this vulnerability...
Command injection
A command injection vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow an attacker to execute arbitrary code on an affected system. An attacker must first obtain admin/root privileges on the SPLX console to exploit this vulnerability...
CVE-2007-1168
Trend Micro ServerProtect for Linux SPLX 1.25, 1.3, and 2.5 before 20070216 allows remote attackers to access arbitrary web pages and reconfigure the product via HTTP requests with the splx2376info cookie to the web interface port 14942/tcp...
CVE-2007-1168
The CVE-2007-1168 issue affects Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 prior to 20070216. Multiple connected documents confirm a cookie-based authentication bypass on the web interface (port 14942/tcp) via the splx_2376_info cookie, allowing remote attackers to access arbit...