Vulnerability Database

314,486

Total vulnerabilities in the database

CVE-2017-14089

An Unauthorized Memory Corruption vulnerability in Trend Micro OfficeScan 11.0 and XG may allow remote unauthenticated users who can access the OfficeScan server to target cgiShowClientAdm.exe and cause memory corruption issues.

Published: Oct 6, 2017
Updated: Nov 9, 2025
CVE: CVE-2017-14089
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
trendmicro / officescan	12.0	12.0.x
trendmicro / officescan	11.0-sp1	11.0-sp1.x

http://hyp3rlinx.altervista.org/advisories/CVE-2017-14089-TRENDMICRO-OFFICESCAN-XG-PRE-AUTH-REMOTE-MEMORY-CORRUPTION.txt
http://packetstormsecurity.com/files/144464/TrendMicro-OfficeScan-11.0-XG-12.0-Memory-Corruption.html
http://seclists.org/fulldisclosure/2017/Sep/91
http://www.securityfocus.com/archive/1/541271/100/0/threaded
http://www.securityfocus.com/bid/101076
http://www.securitytracker.com/id/1039500
https://success.trendmicro.com/solution/1118372
https://www.exploit-db.com/exploits/42920/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo