CVE-2017-14087

HIGH

Trend Micro OfficeScan XG 12.0 - Host Header Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-14087. PoCs published by hyp3rlinx.

AI-analyzed exploit summary The exploit describes a Host Header Injection vulnerability in TrendMicro OfficeScan, where the 'db_controller.php' script relies on the spoofable HTTP_HOST header instead of SERVER_NAME. This can lead to arbitrary link rendering in cached environments.

Description

A Host Header Injection vulnerability in Trend Micro OfficeScan XG (12.0) may allow an attacker to spoof a particular Host header, allowing the attacker to render arbitrary links that point to a malicious website with poisoned Host header webpages.

Exploits (1)

exploitdb WRITEUP VERIFIED

by hyp3rlinx · textwebappsphp

https://www.exploit-db.com/exploits/42895

View Code ZIP pw:eip

The exploit describes a Host Header Injection vulnerability in TrendMicro OfficeScan, where the 'db_controller.php' script relies on the spoofable HTTP_HOST header instead of SERVER_NAME. This can lead to arbitrary link rendering in cached environments.

Classification

Writeup 100%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: TrendMicro OfficeScan v11.0 and XG (12.0)

No auth needed

Prerequisites: Access to the target server · Ability to send HTTP requests with custom headers

devstral-2 · analyzed Feb 16, 2026 Full analysis →