Description
Unrestricted file uploads in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations.
Affected products
- Trend Micro / Mobile Security (Enterprise)< 9.7 Patch 3 – < 9.7 Patch 3
References
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-17-807
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-17-789
- MISChttp://www.securityfocus.com/bid/100970
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-17-790
- MISChttps://success.trendmicro.com/solution/1118224
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-17-785