SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Security)  >   Trend Micro InterScan Messaging Security Vendors:   Trend Micro
Trend Micro InterScan Messaging Security Input Validation Flaw in DetailReportAction Lets Remote Authenticated Users Traverse the Directory to View Arbitrary Files on the Target System
SecurityTracker Alert ID:  1038125
SecurityTracker URL:  http://securitytracker.com/id/1038125
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Mar 24 2017
Impact:   Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 7.5
Description:   A vulnerability was reported in Trend Micro InterScan Messaging Security. A remote authenticated user can view arbitrary files on the target system.

The showPicture method of the DetailReportAction class does not properly validate user-supplied input in the 'pictureName' parameter. A remote authenticated user can supply a specially crafted request via TCP port 8445 to traverse the directory and view arbitrary files on target system with SYSTEM level privileges.

The vendor was notified on February 1, 2017.

Steven Seeley of Source Incite (via Trend Micro ZDI) reported this vulnerability.

Impact:   A remote authenticated user can view arbitrary files on the target system with SYSTEM level privileges.
Solution:   The vendor has issued a fix (7.5 CP 1463).

The vendor advisory is available at:

https://success.trendmicro.com/solution/1116903

Vendor URL:  success.trendmicro.com/solution/1116903 (Links to External Site)
Cause:   Access control error, Input validation error
Underlying OS:  Windows (2003), Windows (2008), Windows (2012)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC