CVE-2017-14082

Sažetak

An uninitialized pointer information disclosure vulnerability in Trend Micro Mobile Security (Enterprise) versions 9.7 and below could allow an unauthenticated remote attacker to disclosure sensitive information on a vulnerable system.

Reference

http://www.securityfocus.com/bid/102216
http://www.zerodayinitiative.com/advisories/ZDI-17-972/
https://success.trendmicro.com/solution/1118993

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

01-02-2018 - 15:23

Objavljeno

19-01-2018 - 19:29