Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
officescan vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-8599
Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote malicious user to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.
Trendmicro Officescan Xg
Trendmicro Apex One 2019
10
CVSSv2
CVE-2020-8598
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow a remote malicious user to execute arbitrary code on affected installations with SYSTEM level privileges. Authentication is ...
Trendmicro Officescan Xg
Trendmicro Apex One 2019
Trendmicro Worry-free Business Security 9.5
Trendmicro Worry-free Business Security 10.0
Trendmicro Worry-free Business Security 9.0
10
CVSSv2
CVE-2019-18189
A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (11.0, XG) and Worry-Free Business Security (9.5, 10.0) may allow an malicious user to bypass authentication and log on to an affected product's management console as a root user. The vulnerability does ...
Trendmicro Officescan 11.0
Trendmicro Officescan Xg
Trendmicro Apex One
Trendmicro Worry-free Business Security 9.5
Trendmicro Worry-free Business Security 10.0
10
CVSSv2
CVE-2018-3608
A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an malicious user to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be ...
Trendmicro Antivirus + Security
Trendmicro Internet Security
Trendmicro Maximum Security
Trendmicro Premium Security
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
Trendmicro Officescan Monthly 12.0
Trendmicro Officescan Monthly 11.0
1 Github repository
10
CVSSv2
CVE-2017-11393
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote malicious users to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the tr parameter within Proxy.php. Formerly ZDI-CAN-4543.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
10
CVSSv2
CVE-2017-11394
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote malicious users to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the T parameter within Proxy.php. Formerly ZDI-CAN-4544.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
10
CVSSv2
CVE-2008-3865
Multiple heap-based buffer overflows in the ApiThread function in the firewall service (aka TmPfw.exe) in Trend Micro Network Security Component (NSC) modules, as used in Trend Micro OfficeScan 8.0 SP1 Patch 1 and Internet Security 2007 and 2008 17.0.1224, allow remote malicious ...
Trend Micro Internet Security 2008 17.0.1224
Trend Micro Internet Security 2007
Trend Micro Officescan 8.0
10
CVSSv2
CVE-2008-3862
Stack-based buffer overflow in CGI programs in the server in Trend Micro OfficeScan 7.3 Patch 4 build 1367 and other builds prior to 1374, and 8.0 SP1 Patch 1 before build 3110, allows remote malicious users to execute arbitrary code via an HTTP POST request containing crafted fo...
Trend Micro Officescan 8.0
Trend Micro Officescan 7.3
10
CVSSv2
CVE-2008-4402
Multiple buffer overflows in CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote malicious users to execute arbitrary code via unspecified vectors.
Trend Micro Officescan 8.0
10
CVSSv2
CVE-2008-2437
Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro OfficeScan 7.3 patch 4 build 1362 and other builds, OfficeScan 8.0 and 8.0 SP1, and Client Server Messaging Security 3.6 allows remote malicious users to execute arbitrary code via an HTTP request containing a long Com...
Trend Micro Client-server-messaging Security 3.5
Trend Micro Officescan 7.3
Trend Micro Officescan 8.0
Trend Micro Client-server-messaging Security 2.0
Trend Micro Client-server-messaging Security 3.6
Trend Micro Officescan 7.0
Trend Micro Client-server-messaging Security 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »