Vulnerabilities > CVE-2017-11382 - Exposure of Resource to Wrong Sphere vulnerability in Trendmicro Deep Discovery Email Inspector 2.5.1

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

trendmicro

CWE-668

NVD

Published: 2017-08-03

Updated: 2019-10-03

Summary

Denial of Service vulnerability in Trend Micro Deep Discovery Email Inspector 2.5.1 allows remote attackers to delete arbitrary files on vulnerable installations, thus disabling the service. Formerly ZDI-CAN-4350.

Vulnerable Configurations

Part	Description	Count
Application	Trendmicro Trendmicro Deep Discovery Email Inspector 2.5.1	1

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

http://www.securityfocus.com/bid/100076
http://www.zerodayinitiative.com/advisories/ZDI-17-503
https://success.trendmicro.com/solution/1116750