Remote Code Execution in Trend Micro OfficeScan Products
CVE-2006-5211

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Officescan Corporate Edition
Vendor: CVE Published:; 10 October 2006

Summary

A vulnerability in Trend Micro OfficeScan products allows remote attackers to execute unauthorized commands through a crafted HTTP request. This issue specifically affects multiple versions of OfficeScan, enabling attackers to remove client installations without proper authorization. As a result, organizations utilizing the affected OfficeScan products may face significant security risks, including unauthorized access and loss of endpoint protection.

References

http://www.securityfocus.com/bid/20330

vdb-entryx_refsource_BID

http://www.trendmicro.com/ftp/documentation/readme/osce_7...

x_refsource_CONFIRM

http://www.trendmicro.com/ftp/documentation/readme/osce_7...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 10, 2006
Vulnerability Reserved
Oct 9, 2006