Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
officescan vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2007-3455
cgiChkMasterPwd.exe prior to 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote malicious users to bypass the password requirement and gain access to the Management Console via an empty hash and empty encrypted password string, related to "stored decrypt...
Trend Micro Officescan 8.0
10
CVSSv2
CVE-2008-4402
Multiple buffer overflows in CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote malicious users to execute arbitrary code via unspecified vectors.
Trend Micro Officescan 8.0
5
CVSSv2
CVE-2008-4403
The CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote malicious users to cause a denial of service (NULL pointer dereference and child process crash) via crafted HTTP headers, related to the "erro...
Trend Micro Officescan 8.0
7.5
CVSSv2
CVE-2006-6178
Buffer overflow in PCCSRV\Web_console\RemoteInstallCGI\Wizard.exe for Trend Micro OfficeScan 7.3 before build 7.3.0.1087 allows remote malicious users to execute arbitrary code via unknown attack vectors.
Trend Micro Officescan 7.3
5.1
CVSSv2
CVE-2006-5157
Format string vulnerability in the ActiveX control (ATXCONSOLE.OCX) in TrendMicro OfficeScan Corporate Edition (OSCE) prior to 7.3 Patch 1 allows remote malicious users to execute arbitrary code via format string identifiers in the "Management Console's Remote Client In...
Trend Micro Officescan Corporate 7.3
9.3
CVSSv2
CVE-2008-3364
Buffer overflow in the ObjRemoveCtrl Class ActiveX control in OfficeScanRemoveCtrl.dll 7.3.0.1020 in Trend Micro OfficeScan Corp Edition (OSCE) Web-Deployment 7.0, 7.3 build 1343 Patch 4 and other builds, and 8.0; Client Server Messaging Security (CSM) 3.5 and 3.6; and Worry-Free...
Trend Micro Officescan 7.3
1 EDB exploit
1.9
CVSSv2
CVE-2018-15364
A Named Pipe Request Processing Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro OfficeScan XG (12.0) could allow a local malicious user to disclose sensitive information on vulnerable installations. An attacker must first obtain the ability to execute low-p...
Trendmicro Officescan Xg 12.0
10
CVSSv2
CVE-2006-1381
Trend Micro OfficeScan 5.5, and probably other versions prior to 6.5, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying tmlisten.exe.
Trend Micro Officescan 5.5
9.3
CVSSv2
CVE-2007-0325
Multiple buffer overflows in the Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX control in OfficeScanSetupINI.dll, as used in OfficeScan 7.0 before Build 1344, OfficeScan 7.3 before Build 1241, and Client / Server / Messaging Security 3.0 before Build 1197, allow remo...
Trend Micro Officescan Corporate Edition 7.3
Trend Micro Client-server-messaging Security 3.0
Trend Micro Officescan Corporate Edition 7.0
1 EDB exploit
6.4
CVSSv2
CVE-2008-1365
Stack-based buffer overflow in Trend Micro OfficeScan Corporate Edition 8.0 Patch 2 build 1189 and previous versions, and 7.3 Patch 3 build 1314 and previous versions, allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a long encrypte...
Trend Micro Officescan Corporate Edition
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »