CVE-2017-14079

Unrestricted file uploads in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations.
References
Link Resource
http://www.securityfocus.com/bid/100970 Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-785 Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-789 Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-790 Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-17-807 Third Party Advisory VDB Entry
https://success.trendmicro.com/solution/1118224 Mitigation Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:trendmicro:mobile_security:9.7:*:*:*:enterprise:*:*:*

History

No history.

Information

Published : 2017-09-22 16:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-14079

Mitre link : CVE-2017-14079

CVE.ORG link : CVE-2017-14079


JSON object : View

Products Affected

trendmicro

  • mobile_security
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type