Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormHyp3rlinxPACKETSTORM:133246
HistoryAug 18, 2015 - 12:00 a.m.

Trend Micro Deep Discovery 3.7.1096 Cross Site Scripting

2015-08-1800:00:00
hyp3rlinx
packetstormsecurity.com
28

0.001 Low

EPSS

Percentile

43.0%

JSON
`[+] Credits: John Page aka hyp3rlinx  
  
[+] Website: hyp3rlinx.altervista.org  
  
[+] Source:  
http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-DDI-081815b.txt  
  
  
  
Vendor:  
================================  
www.trendmicro.com  
  
  
  
Product:  
==============================================================  
Trend Micro Deep Discovery 3.7.1096  
  
The Trend Micro Deep Discovery platform "enables you to detect,  
analyze, and respond to today’s stealthy, targeted attacks  
in real time." It may be deployed on a network as an appliance.  
  
  
  
Vulnerability Type:  
==========================  
Cross Site Scripting (XSS)  
  
  
  
CVE Reference:  
==============  
CVE-2015-2872  
  
  
  
  
Vulnerability Details:  
==========================================================  
http://esupport.trendmicro.com/solution/en-US/1112206.aspx  
  
http://www.kb.cert.org/vuls/id/248692  
  
Deep Discovery Inspector is vulnerable to XSS attacks that  
could allow an unauthenticated user to execute malicious content.  
  
On some legacy browsers like IE 7 with a low Security Level,  
Deep Discovery Inspector is vulnerable to XSS that allows an  
unauthenticated user to execute malicious content through the index.php  
The widget implementation is vulnerable to XSS that allows an  
unauthenticated user to execute malicious content.  
  
  
  
  
Exploit code(s):  
===============  
https://localhost/widget/index.php?menuUrl=1&contentUrl=  
'"%25;alert('XSS+By+hyp3rlinx+\nMarch+2015')//  
  
  
  
  
Disclosure Timeline:  
=========================================================  
Vendor Notification: March 26, 2015  
August 18, 2015 : Public Disclosure  
  
  
  
  
Exploitation Technique:  
=======================  
Remote  
  
  
  
Severity Level:  
=========================================================  
Medium  
  
  
  
Description:  
==========================================================  
  
  
Request Method(s): [+] GET  
  
  
Vulnerable Product: [+] Trend Micro Deep Discovery 3.7.1096  
  
  
Vulnerable Parameter(s): [+] contentURL  
  
  
Affected Area(s): [+] Trend Micro Deep Discovery  
  
  
===========================================================  
  
[+] Disclaimer  
Permission is hereby granted for the redistribution of this advisory,  
provided that it is not altered except by reformatting it, and that due  
credit is given. Permission is explicitly given for insertion in  
vulnerability databases and similar, provided that due credit is given to  
the author. The author is not responsible for any misuse of the information  
contained herein and prohibits any malicious use of all security related  
information or exploits by the author or elsewhere.  
  
by hyp3rlinx  
`

Related

securityvulns 2
cvelist 1
prion 1
cve 1
cert 1
openvas 1
zdt 1
securityvulns
securityvulns
Trend Micro Deep Discovery XSS
2015-08-24 00:00:00
Trend Micro Deep Discovery security vulnerabilities
2015-08-24 00:00:00
cvelist
cvelist
CVE-2015-2872
2015-08-23 15:00:00
prion
prion
Cross site scripting
2015-08-23 15:59:00
cve
cve
CVE-2015-2872
2015-08-23 15:59:00
cert
cert
Trend Micro Deep Discovery threat appliance contains multiple vulnerabilities
2015-08-18 00:00:00
openvas
openvas
Trend Micro Deep Discovery Inspector Authentication Bypass and XSS Vulnerabilities
2016-08-19 00:00:00
zdt
zdt
Trend Micro Deep Discovery 3.7.1096 Authentication Bypass / XSS Vulnerabilities
2015-08-20 00:00:00

0.001 Low

EPSS

Percentile

43.0%

JSON
Related for PACKETSTORM:133246
securityvulns2cvelist1prion1cve1cert1openvas1zdt1