Signature Detail
Short Name |
HTTP:MISC:TM-INTERSCAN-DIR-TRAV |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
Trend Micro InterScan Traversal Directory |
Release Date |
2010/07/01 |
Update Number |
1724 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Trend Micro InterScan Directory Traversal
This signature detects attempts to exploit a known vulnerability against Trend Micro InterScan. A successful attack can allow the attacker to download or upload arbitrary files to the system. Authentication might be required for some tasks.
Extended Description
Trend Micro InterScan Web Security Virtual Appliance is prone to multiple vulnerabilities. Exploiting these issues can allow an attacker to download or upload arbitrary files to the system. This may aid in further attacks. Firmware versions prior to Trend Micro InterScan Web Security Virtual Appliance Critical Build 1386 are vulnerable.
Affected Products
- Trend Micro InterScan Web Security Virtual Appliance
References
- BugTraq: 41072
- URL: http://www.trend.com
- URL: http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0508.html
- URL: http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0507.html
- URL: http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0506.html
- URL: http://www.trendmicro.com/ftp/documentation/readme/iwsva_50_ar64_en_cp1386_readme.txt