Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
officescan vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2004-2430
Trend OfficeScan Corporate Edition 5.58 and possibly earler does not drop privileges when opening a help window from a virus detection pop-up window, which allows local users to gain SYSTEM privileges.
Trend Micro Officescan Corporate 3.11
Trend Micro Officescan Corporate 5.02
Trend Micro Officescan Corporate 5.5
Trend Micro Officescan Corporate 3.13
Trend Micro Officescan 3.0
Trend Micro Officescan Corporate 5.58
Trend Micro Officescan Corporate 3.5
Trend Micro Officescan Corporate 3.54
409
VMScore
CVE-2004-2006
Trend Micro OfficeScan 3.0 - 6.0 has default permissions of "Everyone Full Control" on the installation directory and registry keys, which allows local users to disable virus protection.
Trend Micro Officescan Corporate 3.11
Trend Micro Officescan Corporate 5.02
Trend Micro Officescan Corporate 3.13
Trend Micro Officescan 3.0
Trend Micro Officescan Corporate 5.58
Trend Micro Officescan Corporate 3.5
Trend Micro Officescan Corporate 3.54
445
VMScore
CVE-2006-5212
Trend Micro OfficeScan 6.0 in Client/Server/Messaging (CSM) Suite for SMB 2.0 prior to 6.0.0.1385, and OfficeScan Corporate Edition (OSCE) 6.5 prior to 6.5.0.1418, 7.0 prior to 7.0.0.1257, and 7.3 prior to 7.3.0.1053 allow remote malicious users to delete files via a modified fil...
Trend Micro Officescan Corporate 6.5
Trend Micro Officescan Corporate 7.0
Trend Micro Officescan 6.0
Trend Micro Officescan Corporate 7.3
755
VMScore
CVE-2003-1341
The default installation of Trend Micro OfficeScan 3.0 up to and including 3.54 and 5.x allows remote malicious users to bypass authentication from cgiChkMasterPasswd.exe and gain access to the web management console via a direct request to cgiMasterPwd.exe.
Trend Micro Officescan 3.11
Trend Micro Officescan 3.5
Trend Micro Officescan 3.0
Trend Micro Virus Buster 3.52
Trend Micro Virus Buster 3.53
Trend Micro Officescan 3.1.1
Trend Micro Officescan 3.13
Trend Micro Officescan 3.54
Trend Micro Virus Buster 3.54
1 EDB exploit
890
VMScore
CVE-2017-11393
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote malicious users to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the tr parameter within Proxy.php. Formerly ZDI-CAN-4543.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1000
VMScore
CVE-2017-11394
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote malicious users to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the T parameter within Proxy.php. Formerly ZDI-CAN-4544.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
505
VMScore
CVE-2017-14083
A vulnerability in Trend Micro OfficeScan 11.0 and XG allows remote unauthenticated users who can access the system to download the OfficeScan encryption file.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
481
VMScore
CVE-2018-10505
A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local malicious user to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL 0x220008 in the TMWFP driver. An attacker must first o...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
356
VMScore
CVE-2018-10509
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a malicious user to exploit it via a Browser Refresh attack on vulnerable installations. An attacker must be using a AD logon user account in order to exploit this vulnerability.
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
446
VMScore
CVE-2019-18187
Trend Micro OfficeScan versions 11.0 and XG (12.0) could be exploited by an attacker utilizing a directory traversal vulnerability to extract files from an arbitrary zip file to a specific folder on the OfficeScan server, which could potentially lead to remote code execution (RCE...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »