Trend Micro Security Multiple Vulnerabilities Fixed by 10.0.1265 and 8.0.2063


Description   (#Several vulnerabilities were reported in Trend Micro Security products.#A remote attacker could exploit them by enticing their victim into following a specially formed link in order to execute arbitrary code with NT\SYSTEM privileges.##These vulnerabilities, located in the HTTP daemon of the "CoreServiceShell" component, stem from:#multiple path traversal in "/loadhelp/" and "/wtp/"#an header injection in the URL parameter of the "continue/TiCredToken" web page#a cross-site scripting in the "loader.html" web page.##Proofs of concept are available.)
     
Vulnerable Products   Vulnerable Software:
Maximum Security (Internet Security) (Trend Micro) - 2015, 2016
     
Solution   2015 (version 8): 8.0.2063.
     
CVE  
     
References   - Trend Micro : SECURITY BULLETIN: Multiple Vulnerabilities in Trend Micro Security
https://esupport.trendmicro.com/en-us/home/pages/technical-support/1114095.aspx
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
Directory traversal
3.2.0
Directory traversal backward root folder
3.2.0
     


 
 
 
 
 Risk level 
High 

 Vulnerability First Public Report Date 
2016-05-09 

 Target Type 
Server 

 Possible exploit 
Remote