AllaKore RAT’s Grip Tightens on Mexican Financial Institutions

Summary: A threat actor has been targeting Mexican banks and cryptocurrency trading since at least 2021. Using custom installers, the actor distributes a modified version of the AllaKore RAT, an open-source remote access tool. The campaign cleverly mimics the Mexican Social Security Institute IMS...

Cross site scripting

Cross-site scripting XSS vulnerability in Trend Micro InterScan Messaging Security Virtual Appliance 8.5.1.1516 allows remote authenticated users to inject arbitrary web script or HTML via the addWhiteListDomainStr parameter to addWhiteListDomain.imss...

CVE-2006-1380

ISNTSmtp directory in Trend Micro InterScan Messaging Security Suite IMSS 5.5 build 1183 and possibly other versions before 5.7.0.1121, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying ISNTSysMonitor.exe...

Design/Logic Flaw

ISNTSmtp directory in Trend Micro InterScan Messaging Security Suite IMSS 5.5 build 1183 and possibly other versions before 5.7.0.1121, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying ISNTSysMonitor.exe...

CVE-2006-1380

The CVE-2006-1380 issue affects Trend Micro InterScan Messaging Security Suite (IMSS) prior to 5.7.0.1121. The ISNTSmtp directory uses insecure DACLs on critical files, enabling local users to gain SYSTEM privileges by modifying ISNTSysMonitor.exe. Affected versions include IMSS 5.5 build 1183 an...

Trend Micro IMSS Console Management Detection (HTTP)

The remote host appears to run Trend Micro Interscan Messaging Security Suite, connections are allowed to the web console management. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...