Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A file upload vulnerability in exists in Trend Micro Apex One server build 11110. Using a malformed Content-Length header in an HTTP PUT message sent to URL /officescan/console/html/cgi/fcgiOfcDDA.exe, an unauthenticated remote attacker can upload arbitrary files to the SampleSubmission directory (i.e., \PCCSRV\TEMP\SampleSubmission) on the server. The attacker can upload a large number of large files to fill up the file system on which the Apex One server is installed.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Apex One 代码问题漏洞
Vulnerability Description
Trend Micro Apex One是美国趋势科技(Trend Micro)公司的一款终端防护软件。 Trend Micro Apex One server 11110版本存在安全漏洞,该漏洞源于其HTTP PUT消息中使用格式不正确的Content-Length头允许未经身份验证的远程攻击者可以将任意文件上传到服务器上的SampleSubmission目录。
CVSS Information
N/A
Vulnerability Type
N/A