Elevation of Account Permissions Vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG

Elevation of Account Permissions Vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG

CVE-2018-10508 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to use a specially crafted URL to elevate account permissions on vulnerable installations. An attacker must already have at least guest privileges in order to exploit this vulnerability.

Learn more about our Cis Benchmark Audit For Microsoft Office.