Lucene search

K

TrendmicroCVELIST:CVE-2017-14085

HistoryOct 05, 2017 - 1:00 p.m.

CVE-2017-14085

2017-10-0513:00:00

trendmicro

www.cve.org

6.6 Medium

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.2%

Information disclosure vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to query the network’s NT domain or the PHP version and modules.

CNA Affected

[
  {
    "product": "Trend Micro OfficeScan",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "11.0, XG (12.0)"
      }
    ]
  }
]

References

hyp3rlinx.altervista.org/advisories/CVE-2017-14085-TRENDMICRO-OFFICESCAN-XG-REMOTE-NT-DOMAIN-PHP-INFO-DISCLOSURE.txt

packetstormsecurity.com/files/144402/TrendMicro-OfficeScan-11.0-XG-12.0-Information-Disclosure.html

seclists.org/fulldisclosure/2017/Sep/85

www.securityfocus.com/archive/1/541281/100/0/threaded

www.securityfocus.com/bid/101076

www.securitytracker.com/id/1039500

success.trendmicro.com/solution/1118372

www.exploit-db.com/exploits/42893/

6.6 Medium

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.2%

Related for CVELIST:CVE-2017-14085

exploitpack1 nvd1 packetstorm1 cve1 prion1 exploitdb1 nessus1 openvas1