HTTP: Trend Micro InterScan Directory Traversal
This signature detects attempts to exploit a known vulnerability against Trend Micro InterScan. A successful attack can allow the attacker to download or upload arbitrary files to the system. Authentication might be required for some tasks.
Extended Description
Trend Micro InterScan Web Security Virtual Appliance is prone to multiple vulnerabilities. Exploiting these issues can allow an attacker to download or upload arbitrary files to the system. This may aid in further attacks. Firmware versions prior to Trend Micro InterScan Web Security Virtual Appliance Critical Build 1386 are vulnerable.
Affected Products
Trend_micro interscan_web_security_virtual_appliance
References
BugTraq: 41072
URL: http://www.trend.com http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0508.html http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0507.html http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0506.html http://www.trendmicro.com/ftp/documentation/readme/iwsva_50_ar64_en_cp1386_readme.txt
Short Name
HTTP:MISC:TM-INTERSCAN-DIR-TRAV
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Directory InterScan Micro Traversal Trend bid:41072
Release Date
07/01/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Trend_micro