Vulnerabilities > CVE-2018-10507 - Unspecified vulnerability in Trendmicro Officescan 11.0/Xg
Attack vector
LOCAL Attack complexity
LOW Privileges required
HIGH Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have administrator privileges in order to exploit this vulnerability.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Exploit-Db
description | TrendMicro OfficeScan XG 11.0 - Change Prevention Bypass. CVE-2018-10507. Local exploit for Windows platform |
file | exploits/windows/local/44858.txt |
id | EDB-ID:44858 |
last seen | 2018-06-08 |
modified | 2018-06-08 |
platform | windows |
port | |
published | 2018-06-08 |
reporter | Exploit-DB |
source | https://www.exploit-db.com/download/44858/ |
title | TrendMicro OfficeScan XG 11.0 - Change Prevention Bypass |
type | local |
Packetstorm
data source | https://packetstormsecurity.com/files/download/148096/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txt |
id | PACKETSTORM:148096 |
last seen | 2018-06-09 |
published | 2018-06-08 |
reporter | hyp3rlinx |
source | https://packetstormsecurity.com/files/148096/OfficeScan-XG-11.0-Unauthorized-Change-Prevention-Bypass.html |
title | OfficeScan XG 11.0 Unauthorized Change Prevention Bypass |
References
- http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txt
- http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txt
- https://success.trendmicro.com/solution/1119961
- https://success.trendmicro.com/solution/1119961
- https://www.exploit-db.com/exploits/44858/
- https://www.exploit-db.com/exploits/44858/