CVEs-PoC/2017/CVE-2017-14084.md

### [CVE-2017-14084](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14084)
![](https://img.shields.io/static/v1?label=Product&message=Trend%20Micro%20OfficeScan&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=11.0%2C%20XG%20(12.0)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Man-in-the-Middle%20(MitM)%20RCE&color=brightgreen)

### Description

A potential Man-in-the-Middle (MitM) attack vulnerability in Trend Micro OfficeScan 11.0 and XG may allow attackers to execute arbitrary code on vulnerable installations.

### POC

#### Reference
- http://packetstormsecurity.com/files/144400/TrendMicro-OfficeScan-11.0-XG-12.0-Man-In-The-Middle.html
- https://www.exploit-db.com/exploits/42891/

#### Github
- https://github.com/cedricbonhomme/ExploitDBSighting
- https://github.com/vulnerability-lookup/ExploitDBSighting