PT-2017-18539 · Trend Micro · Trend Micro Officescan+1

Published

2017-05-05

Updated

2017-05-16

CVE-2017-8801

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Trend Micro OfficeScan versions 11.0 before SP1 CP 6325 Trend Micro OfficeScan XG before CP 1352

Description The issue is related to a crafted URI using a blocked website, which can lead to XSS.

Recommendations For Trend Micro OfficeScan version 11.0, update to SP1 CP 6325 or later to resolve the issue. For Trend Micro OfficeScan XG, update to CP 1352 or later to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2017-8801

Affected Products

Trend Micro Officescan

Trend Micro Officescan Xg

PT-2017-18539 · Trend Micro · Trend Micro Officescan+1

CVE-2017-8801

Weakness Enumeration

Related Identifiers

Affected Products

References · 4