漏洞描述
Trend Micro uiAirSupport是美国趋势科技(Trend Micro)公司的一款专为订阅客户提供的支持工具。 Trend MicrouiAirSupport 6.0.2092 及之前版本存在DLL 劫持/代理漏洞,攻击者可以利用该漏洞以“白程序”的方式执行恶意DLL文件。
Trend Micro uiAirSupport DLL劫持漏洞(CVE-2024-23940)
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
- (CVE-2025-53770)Microsoft SharePoint Server反序列化漏洞允许远程代码执行
- POC CVE-2019-0604: Microsoft SharePoint - Remote Code Execution
- POC CVE-2020-0646: Microsoft .NET Framework - Remote Code Execution
- POC CVE-2000-0114: Microsoft FrontPage Extensions - Information Disclosure
- POC CVE-2008-1547: Microsoft OWA Exchange Server 2003 - 'redir.asp' Open Redirection
- POC CVE-2015-1635: Microsoft Windows 'HTTP.sys' - Remote Code Execution
- POC CVE-2016-7552: Trend Micro Threat Discovery Appliance 2.6.1062r1 - Authentication Bypass
- POC CVE-2018-18775: Microstrategy Web 7 - Cross-Site Scripting
- POC CVE-2018-18777: Microstrategy Web 7 - Local File Inclusion
- POC CVE-2019-18957: MicroStrategy Library <11.1.3 - Cross-Site Scripting
- POC CVE-2020-0618: Microsoft SQL Server Reporting Services - Remote Code Execution
- POC CVE-2020-11450: MicroStrategy Web 10.4 - Information Disclosure