Arbitrary logs location in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to change location of log files and be manipulated to execute arbitrary commands and attain command execution on a vulnerable system.
References
Link | Resource |
---|---|
https://success.trendmicro.com/solution/1119349 | Patch Vendor Advisory |
https://www.coresecurity.com/advisories/trend-micro-email-encryption-gateway-multiple-vulnerabilities | Exploit Technical Description Third Party Advisory |
https://www.exploit-db.com/exploits/44166/ | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trendmicro
Published: 2018-03-15T19:00:00
Updated: 2018-03-16T09:57:01
Reserved: 2018-01-25T00:00:00
Link: CVE-2018-6222
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-03-15T19:29:00.737
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-6222
JSON object: View
Redhat Information
No data.
CWE