XXXTreeNode method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro Control Manager 6.0 could allow a remote attacker to execute arbitrary code on vulnerable installations.
References
Link | Resource |
---|---|
https://success.trendmicro.com/solution/1119158 | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-18-090/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-18-094/ | Third Party Advisory VDB Entry |
https://www.zerodayinitiative.com/advisories/ZDI-18-109/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trendmicro
Published: 2018-02-09T22:00:00
Updated: 2018-02-09T21:57:01
Reserved: 2017-12-27T00:00:00
Link: CVE-2018-3607
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-02-09T22:29:01.223
Modified: 2018-02-27T19:45:02.730
Link: CVE-2018-3607
JSON object: View
Redhat Information
No data.
CWE