log_query_system.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and previous versions allows remote authenticated users to execute arbitrary code as the root user via shell metacharacters in the cache_id parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
trendmicro threat discovery appliance |