HTTP: Trend Micro Antivirus Password Manager Code Injection
A code injection vulnerability has been reported in the Trend Micro Password Manager. Successful exploitation could lead to arbitrary code execution or information disclosure in the security context of the currently logged on user.
Extended Description
The HTTP server in Trend Micro Password Manager allows remote web servers to execute arbitrary commands via the url parameter to (1) api/openUrlInDefaultBrowser or (2) api/showSB.
Affected Products
Trendmicro password_manager
References
CVE: CVE-2016-3987
URL: https://code.google.com/p/google-security-research/issues/detail?id=693
Short Name
HTTP:STC:DL:TM-AV-PM-CI
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Antivirus CVE-2016-3987 Code Injection Manager Micro Password Trend
Release Date
03/29/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3658
False Positive
Unknown
Vendors
Trendmicro
CVSS Score
10.0