Trend Micro IWSVA PacFileManagement delete_pac_files Command Injection

A command injection vulnerability has been reported in Trend Micro InterScan Web Security Virtual Appliance IWSVA. The vulnerability exists due to improper validation of the HTTP request parameters when processing requests to the PacFileManagement servlet. A remote, authenticated attacker can...

Trend Micro InterScan Web Security Virtual Appliance PacFileManagement delete_pac_files Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro InterScan Web Security Virtual Appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within the delete operation of the PacFileManagement servlet...

Trend Micro InterScan Web Security Virtual Appliance PacFileManagement Unrestricted File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro InterScan Web Security Virtual Appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within the PacFileManagement servlet. The issue results from...