Trend Micro Control Manager streamlines administration of Trend Micro security solutions.
A directory traversal vulnerability in the
**importFile.php** script allows remote attackers to upload files containing arbitrary PHP script under the document root. The uploaded files can then be executed by sending an HTTP GET request.
Upgrade to Control Manager version 6.0 build 3506 or higher.