HTTP: Trend Micro InterScan Web Security Virtual Appliance Multiple Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Trend Micro InterScan Web Security Virtual Appliance. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 SP2 could allow an unauthenticated, remote attacker to send a specially crafted HTTP message and achieve remote code execution with elevated privileges.
Affected Products
Trendmicro interscan_web_security_virtual_appliance
Short Name
HTTP:OVERFLOW:TRNDMICRO-WSVA-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Appliance Buffer CVE-2020-28578 CVE-2020-28579 InterScan Micro Multiple Overflow Security Trend Virtual Web
Release Date
01/18/2021
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Trendmicro
CVSS Score
7.5
6.5