Trend Micro OfficeScan Multiple Vulnerabilities (000245571)

critical Nessus Plugin ID 134629

Synopsis

The remote host is running an application that is affected by multiple vulnerabilities.

Description

According to its self-reported version, the Trend Micro OfficeScan application running on the remote host is prior to 12.0 CP 5474 (XG SP1) or 12.0 CP 1988 (XG). It is, therefore, affected by multiple vulnerabilities.

- A remote code execution vulnerability exists due to a unsecured dll. An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands with root privileges. (CVE-2020-8598), (CVE-2020-8470)
- A privilege escalation vulnerability exists due to a vulnerable EXE file. An unauthenticated, remote attacker can exploit this to gain root access to the system.
(CVE-2020-8599)
- A remote code execution vulnerability exists due to a migration tool component vulnerability. An authenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands with root privileges. (CVE-2020-8467)
- A content validation escape vulnerability exist in the agent client components that could allow a authenticated remote attacker to manipulate OfficeScan components.
(CVE-2020-8468)

Solution

Upgrade to the relevant fixed version referenced in Trend Micro advisory 000245571.

See Also

http://www.nessus.org/u?e02f3e83

Plugin Details

Severity: Critical

ID: 134629

File Name: trendmicro_officescan_000245571.nasl

Version: 1.6

Type: remote

Agent: windows

Family: Windows

Published: 3/18/2020

Updated: 1/24/2022

Supported Sensors: Nessus Agent

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: E:H/RL:OF/RC:C

CVSS Score Source: CVE-2020-8598

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: E:H/RL:O/RC:C

Vulnerability Information

Required KB Items: installed_sw/Trend Micro OfficeScan

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/16/2020

Vulnerability Publication Date: 3/16/2020

CISA Known Exploited Dates: 5/3/2022

Reference Information

CVE: CVE-2020-8467, CVE-2020-8468, CVE-2020-8470, CVE-2020-8598, CVE-2020-8599