logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2023-0587

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2023-0587

Description:
A file upload vulnerability in exists in Trend Micro Apex One server build 11110. Using a malformed Content-Length header in an HTTP PUT message sent to URL /officescan/console/html/cgi/fcgiOfcDDA.exe, an unauthenticated remote attacker can upload arbitrary files to the SampleSubmission directory (i.e., \PCCSRV\TEMP\SampleSubmission) on the server. The attacker can upload a large number of large files to fill up the file system on which the Apex One server is installed.
Last updated date:
02/07/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
02/07/2023
Reference url to background

https://www.tenable.com/security/research/tra-2023-5

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy