← back
CVE-2018-10507

CVE-2018-10507

EPSS 1.4%
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have administrator privileges in order to exploit this vulnerability.
Affected products
Trend Micro · Trend Micro OfficeScan
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44858/unverifiedexploitdbwww.exploit-db.com/exploits/44858unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txthttps://success.trendmicro.com/solution/1119961https://www.exploit-db.com/exploits/44858/