Sign-up

ID

VAR-201106-0310


TITLE

Trend Micro Control Manager 'ApHost' Parameter Cross-Site Request Forgery Vulnerability

Trust: 0.8

sources: IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2318

DESCRIPTION

Trend Micro Control Manager (TMCM) is a centralized security management console from Trend Micro that enables unified coordination of Trend Micro products and services. The \"ApHost parameter passed to the /commoncgi/servlet/CCGIServlet input lacks proper filtering before returning to the user, and the attacker can exploit the vulnerability for cross-site scripting attacks to obtain sensitive information or hijack user sessions. Trend Micro Control Manager is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. by "ApHost Parameters passed to /commoncgi/servlet/CCGIServlet The input is not properly filtered before returning to the user. ---------------------------------------------------------------------- Join Secunia @ FIRST Conference, 12-17 June, Hilton Vienna, Austria See to the presentation "The Dynamics and Threats of End-Point Software Portfolios" by Secunia's Research Analyst Director, Stefan Frei. Read more: http://conference.first.org/ ---------------------------------------------------------------------- TITLE: Trend Micro Control Manager "ApHost" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA44134 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/44134/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=44134 RELEASE DATE: 2011-06-17 DISCUSS ADVISORY: http://secunia.com/advisories/44134/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/44134/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=44134 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: Sow Ching Shiong has discovered a vulnerability in Trend Micro Control Manager, which can be exploited by malicious people to conduct cross-site scripting attacks. The vulnerability is confirmed in version 5.5 (Build 1250). Other versions may also be affected. SOLUTION: Apply hotfix 1435. Please contact the vendor for details. PROVIDED AND/OR DISCOVERED BY: Sow Ching Shiong via Secunia. OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.08

sources: CNVD: CNVD-2011-2318 // BID: 48313 // IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d // PACKETSTORM: 102355

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2318

AFFECTED PRODUCTS

vendor:trend micromodel:control manager buildscope:eqversion:5.51250

Trust: 1.1

sources: IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2318 // BID: 48313

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d
severity: NONE
baseScore: NONE
vectorString: NONE
accessVector: NONE
accessComplexity: NONE
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: UNKNOWN

Trust: 0.2

sources: IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d

THREAT TYPE

network

Trust: 0.3

sources: BID: 48313

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 48313

PATCH

title:Trend Micro Control Manager 'ApHost' parameter cross-site request forgery vulnerability patchurl:https://www.cnvd.org.cn/patchinfo/show/4153

Trust: 0.6

sources: CNVD: CNVD-2011-2318

EXTERNAL IDS

db:BIDid:48313

Trust: 0.9

db:CNVDid:CNVD-2011-2318

Trust: 0.8

db:SECUNIAid:44134

Trust: 0.7

db:IVDid:4E16F39A-1F92-11E6-ABEF-000C29C66E3D

Trust: 0.2

db:PACKETSTORMid:102355

Trust: 0.1

sources: IVD: 4e16f39a-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2318 // BID: 48313 // PACKETSTORM: 102355

REFERENCES

url:http://secunia.com/advisories/44134/

Trust: 0.7

url:http://us.trendmicro.com/us/products/enterprise/control-manager/

Trust: 0.3

url:http://secunia.com/vulnerability_intelligence/

Trust: 0.1

url:http://secunia.com/advisories/secunia_security_advisories/

Trust: 0.1

url:http://conference.first.org/

Trust: 0.1

url:http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

Trust: 0.1

url:http://secunia.com/advisories/44134/#comments

Trust: 0.1

url:http://secunia.com/vulnerability_scanning/personal/

Trust: 0.1

url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Trust: 0.1

url:https://ca.secunia.com/?page=viewadvisory&vuln_id=44134

Trust: 0.1

url:http://secunia.com/advisories/about_secunia_advisories/

Trust: 0.1

sources: CNVD: CNVD-2011-2318 // BID: 48313 // PACKETSTORM: 102355

CREDITS

Sow Ching Shiong through Secunia.

Trust: 0.3

sources: BID: 48313

SOURCES

db:IVDid:4e16f39a-1f92-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2011-2318
db:BIDid:48313
db:PACKETSTORMid:102355

LAST UPDATE DATE

2022-05-17T02:01:21.684000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2011-2318date:2011-06-17T00:00:00
db:BIDid:48313date:2011-06-16T00:00:00

SOURCES RELEASE DATE

db:IVDid:4e16f39a-1f92-11e6-abef-000c29c66e3ddate:2011-06-17T00:00:00
db:CNVDid:CNVD-2011-2318date:2011-06-17T00:00:00
db:BIDid:48313date:2011-06-16T00:00:00
db:PACKETSTORMid:102355date:2011-06-17T04:43:55