Security Advisory

CVE-2017-11391

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-08-03 15:00:00

Last updated 2024-09-17 03:33:52

Assigner trendmicro

State PUBLISHED

Description

Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the "t" parameter within modTMCSS Proxy. Formerly ZDI-CAN-4744.

← Browse all CVEs View on cve.org ↗