CVE-2018-3609

EPSS 22.6%CWE-522

A vulnerability in the Trend Micro InterScan Messaging Security Virtual Appliance 9.0 and 9.1 management portal could allow an unauthenticated user to access sensitive information in a particular log file that could be used to bypass authentication on vulnerable installations.

Produtos afetados

Trend Micro · Trend Micro InterScan Messaging Security Virtual Appliance

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://korelogic.com/Resources/Advisories/KL-001-2018-006.txt https://success.trendmicro.com/jp/solution/1119290 https://success.trendmicro.com/solution/1119277 http://www.securityfocus.com/bid/103097