First published: Thu Aug 30 2018(Updated: )
A Named Pipe Request Processing Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro OfficeScan XG (12.0) could allow a local attacker to disclose sensitive information on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit the vulnerability.
Credit: security@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
Trendmicro Officescan Xg | =12.0 | |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2018-15364.
CVE-2018-15364 has a severity of medium.
CVE-2018-15364 affects installations of Trend Micro OfficeScan.
An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit CVE-2018-15364.
Yes, there is a fix available for CVE-2018-15364. Please refer to the vendor's advisory for more information.