CVE-2017-11394
Trend Micro OfficeScan Proxy Command Injection Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the T parameter within Proxy.php. Formerly ZDI-CAN-4544.
La vulnerabilidad de inyección de comandos proxy en Trend Micro OfficeScan 11 and XG (12) permite que atacantes remotos puedan ejecutar código arbitrario en instalaciones vulnerables. Este fallo específico se puede explotar parseando el parámetro T en Proxy.php. Anteriormente ZDI-CAN-4544.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro OfficeScan. Authentication is required to exploit this vulnerability.
The specific flaw exists within the Web Console, which listens on TCP port 4343 by default. When parsing the T parameter in Proxy.php, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current service.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-07-17 CVE Reserved
- 2017-08-02 CVE Published
- 2023-11-07 EPSS Updated
- 2024-09-16 CVE Updated
- 2024-09-16 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (5)
URL | Tag | Source |
---|---|---|
http://www.securityfocus.com/bid/100130 | Third Party Advisory | |
http://www.zerodayinitiative.com/advisories/ZDI-17-521 | Third Party Advisory | |
https://pentest.blog/one-ring-to-rule-them-all-same-rce-on-multiple-trend-micro-products |
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/42971 | 2024-09-16 |
URL | Date | SRC |
---|---|---|
https://success.trendmicro.com/solution/1117769 | 2017-10-14 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Trendmicro Search vendor "Trendmicro" | Officescan Search vendor "Trendmicro" for product "Officescan" | 11.0 Search vendor "Trendmicro" for product "Officescan" and version "11.0" | sp1 |
Affected
| ||||||
Trendmicro Search vendor "Trendmicro" | Officescan Search vendor "Trendmicro" for product "Officescan" | 12.0 Search vendor "Trendmicro" for product "Officescan" and version "12.0" | - |
Affected
|