A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an unauthenticated attacker to hijack active user sessions to perform authenticated requests on a vulnerable system.
원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11398
원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11398
댓글 0
| 번호 | 제목 | 글쓴이 | 날짜 | 조회 수 |
|---|---|---|---|---|
| 527 | CVE-2017-6552 | 관리자 | 2017.03.10 | 2 |
| 526 | CVE-2017-6555 (cms_made_simple) | 관리자 | 2017.03.10 | 4 |
| 525 | CVE-2017-6556 | 관리자 | 2017.03.10 | 1 |
| 524 | CVE-2017-6558 | 관리자 | 2017.03.10 | 3 |
| 523 | CVE-2017-6559 | 관리자 | 2017.03.10 | 1 |
| 522 | CVE-2017-6561 (agora-project) | 관리자 | 2017.03.10 | 5 |
| 521 | CVE-2017-6562 | 관리자 | 2017.03.10 | 2 |
| 520 | CVE-2017-6560 | 관리자 | 2017.03.10 | 1 |
| 519 | CVE-2017-6547 | 관리자 | 2017.03.10 | 6 |
| 518 | CVE-2017-6570 | 관리자 | 2017.03.10 | 7 |
| 517 | CVE-2017-6575 | 관리자 | 2017.03.10 | 1 |
| 516 | CVE-2017-6572 (mail-masta) | 관리자 | 2017.03.10 | 1 |
| 515 | CVE-2017-6576 (mail-masta) | 관리자 | 2017.03.10 | 1 |
| 514 | CVE-2017-6574 | 관리자 | 2017.03.10 | 1 |
| 513 | CVE-2017-6577 | 관리자 | 2017.03.10 | 1 |