Trend Micro Enterprise Mobile Security 2.0.0.1700 - 'Servidor' Denial of Service (PoC)

vendor:

Enterprise Mobile Security

by:

Luis Martinez

7.5

CVSS

HIGH

Denial of Service (DoS) Local

CWE

Product Name: Enterprise Mobile Security

Affected Version From: 2.0.0.1700

Affected Version To: 2.0.0.1700

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: iOS

2018

Trend Micro Enterprise Mobile Security 2.0.0.1700 – ‘Servidor’ Denial of Service (PoC)

The vulnerability allows attackers to cause a denial of service (DoS) condition on the affected device. By sending a specially crafted request to the 'Servidor' field, the application crashes, resulting in a DoS condition.

Mitigation:

No patch or mitigation is currently available for this vulnerability.

Source

Trend Micro Enterprise Mobile Security 2.0.0.1700 – ‘Servidor’ Denial of Service (PoC)

Mitigation:

Exploit-DB raw data: