Sunday, August 24, 2008

Trend Micro Products Web Management Authentication Bypass

According to Secunia, there has been a recent vulnerability in the Trend Micro products listed below that has been announced and patches have been released to address this vulnerability in OfficeScan 8.0 and WFBS 5.0 - the other products remain compromised and patches should be available shortly. The following products are affected:

  • Trend Micro OfficeScan 7.0
  • Trend Micro OfficeScan 7.3
  • Trend Micro OfficeScan 8.0
  • Worry-Free Business Security 5.0
  • Trend Micro Client/Server/Messaging Suite 3.5
  • Trend Micro Client/Server/Messaging Suite 3.6

    NOTE: Other versions may also be affected.

The severity rating of this vulnerability is "Moderately critical" because of the possibility for Trend's security to be bypassed from a compromised system on the local network.

Regards,

The Outspoken Wookie

No comments: