Privilege Escalation via Encrypted Password Leak in Trend Micro OfficeScan and XG

Privilege Escalation via Encrypted Password Leak in Trend Micro OfficeScan and XG

CVE-2017-5481 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Trend Micro OfficeScan 11.0 before SP1 CP 6325 and XG before CP 1352 allows remote authenticated users to gain privileges by leveraging a leak of an encrypted password during a web-console operation.

Learn more about our Cis Benchmark Audit For Microsoft Office.