Details of VAR-201802-0997

ID

VAR-201802-0997

CVE

CVE-2018-3609

TITLE

Trend Micro InterScan Messaging Security Virtual Appliance Vulnerable to information disclosure from log files

Trust: 0.8

sources: JVNDB: JVNDB-2018-002256

DESCRIPTION

A vulnerability in the Trend Micro InterScan Messaging Security Virtual Appliance 9.0 and 9.1 management portal could allow an unauthenticated user to access sensitive information in a particular log file that could be used to bypass authentication on vulnerable installations. An attacker can exploit this issue to bypass the authentication mechanism and perform unauthorized actions. This may lead to further attacks

Trust: 1.89

sources: NVD: CVE-2018-3609 // JVNDB: JVNDB-2018-002256 // BID: 103097

AFFECTED PRODUCTS

vendor:	trendmicro	model:	interscan messaging security virtual appliance	scope:	eq	version:	9.0	Trust: 1.6
vendor:	trendmicro	model:	interscan messaging security virtual appliance	scope:	eq	version:	9.1	Trust: 1.6
vendor:	trend micro	model:	interscan messaging security virtual appliance	scope:	eq	version:	9.1	Trust: 1.1
vendor:	trend micro	model:	interscan messaging security virtual appliance	scope:	eq	version:	9.0	Trust: 1.1
vendor:	trend micro	model:	interscan messaging security virtual appliance patch cp1682	scope:	ne	version:	9.11	Trust: 0.3
vendor:	trend micro	model:	interscan messaging security virtual appliance cp1653	scope:	ne	version:	9.0	Trust: 0.3

sources: BID: 103097 // JVNDB: JVNDB-2018-002256 // CNNVD: CNNVD-201802-874 // NVD: CVE-2018-3609

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2018-3609
value:	HIGH
Trust: 1.8
CNNVD:	CNNVD-201802-874
value:	HIGH
Trust: 0.6

NVD:	CVE-2018-3609
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

NVD:	CVE-2018-3609
baseSeverity:	HIGH
baseScore:	8.1
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 1.8

sources: JVNDB: JVNDB-2018-002256 // CNNVD: CNNVD-201802-874 // NVD: CVE-2018-3609

PROBLEMTYPE DATA

problemtype:

CWE-532

Trust: 1.8

sources: JVNDB: JVNDB-2018-002256 // NVD: CVE-2018-3609

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201802-874

TYPE

log information leak

Trust: 0.6

sources: CNNVD: CNNVD-201802-874

CONFIGURATIONS

sources: NVD: CVE-2018-3609

PATCH

title:	Solution ID: 1119277	url:	https://success.trendmicro.com/solution/1119277	Trust: 0.8
title:	Solution ID: 1119290	url:	https://success.trendmicro.com/jp/solution/1119290	Trust: 0.8
title:	Trend Micro InterScan Messaging Security Virtual Appliance Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=100262	Trust: 0.6

sources: JVNDB: JVNDB-2018-002256 // CNNVD: CNNVD-201802-874

EXTERNAL IDS

db:	NVD	id:	CVE-2018-3609	Trust: 2.7
db:	BID	id:	103097	Trust: 1.9
db:	JVNDB	id:	JVNDB-2018-002256	Trust: 0.8
db:	CNNVD	id:	CNNVD-201802-874	Trust: 0.6

sources: BID: 103097 // JVNDB: JVNDB-2018-002256 // CNNVD: CNNVD-201802-874 // NVD: CVE-2018-3609

REFERENCES

url:	https://korelogic.com/resources/advisories/kl-001-2018-006.txt	Trust: 1.9
url:	https://success.trendmicro.com/jp/solution/1119290	Trust: 1.9
url:	https://success.trendmicro.com/solution/1119277	Trust: 1.9
url:	https://www.securityfocus.com/bid/103097	Trust: 1.6
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-3609	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-3609	Trust: 0.8
url:	http://us.trendmicro.com/us/products/enterprise/control-manager/	Trust: 0.3

sources: BID: 103097 // JVNDB: JVNDB-2018-002256 // CNNVD: CNNVD-201802-874 // NVD: CVE-2018-3609

CREDITS

Matt Bergin working with KoreLogic Disclosures Team.

Trust: 0.3

sources: BID: 103097

SOURCES

db:	BID	id:	103097
db:	JVNDB	id:	JVNDB-2018-002256
db:	CNNVD	id:	CNNVD-201802-874
db:	NVD	id:	CVE-2018-3609

LAST UPDATE DATE

2022-05-04T09:04:13.245000+00:00

SOURCES UPDATE DATE

db:	BID	id:	103097	date:	2018-02-14T00:00:00
db:	JVNDB	id:	JVNDB-2018-002256	date:	2018-04-04T00:00:00
db:	CNNVD	id:	CNNVD-201802-874	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-3609	date:	2019-10-09T23:40:00

SOURCES RELEASE DATE

db:	BID	id:	103097	date:	2018-02-14T00:00:00
db:	JVNDB	id:	JVNDB-2018-002256	date:	2018-04-04T00:00:00
db:	CNNVD	id:	CNNVD-201802-874	date:	2018-02-16T00:00:00
db:	NVD	id:	CVE-2018-3609	date:	2018-02-16T22:29:00