CVE-2006-5212 — Micro Officescan vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trend Micro Officescan

Timeline

PublishedOct 10

Latest updateMay 1

Description

Trend Micro OfficeScan 6.0 in Client/Server/Messaging (CSM) Suite for SMB 2.0 before 6.0.0.1385, and OfficeScan Corporate Edition (OSCE) 6.5 before 6.5.0.1418, 7.0 before 7.0.0.1257, and 7.3 before 7.3.0.1053 allow remote attackers to delete files via a modified filename parameter in a certain HTTP request that invokes the OfficeScan CGI program.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDtrend_micro/officescan4 versions+3

Patches

Patch: www.trendmicro.com ↗Patch: www.trendmicro.com ↗

🔴Vulnerability Details

GHSA

GHSA-v2gx-gw6h-4chx: Trend Micro OfficeScan 6↗2022-05-01

▶

CVEList

CVE-2006-5212: Trend Micro OfficeScan 6↗2006-10-09

▶