admin_sys_time.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows remote authenticated users to execute arbitrary code as the root user via shell metacharacters in the timezone parameter.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HTrendmicro Threat Discovery Appliance
APPTrendmicro≤ 2.6.1062
Powiązane podatności
Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier uses predictable session values, which allows re...
A command execution flaw on the Trend Micro Threat Discovery Appliance 2.6.1062r1 exists with the timezone par...
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a session_id coo...
dlp_policy_upload.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows remote authentic...
detected_potential_files.cgi in Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier allows remote au...