10 matches found
Trend Micro InterScan Web Security Suite Local Privilege Escalation
Added: 12/09/2011 BID: 50380 OSVDB: 76637 Background Trend Micro InterScan Web Security Suite is an application which dynamically defends against web-based attacks at the Internet gateway. Problem Trend Micro InterScan Web Security Suite is vulnerable to local privilege escalation vulnerability...
Trend Micro InterScan Web Security Suite Local Privilege Escalation
Added: 12/09/2011 BID: 50380 OSVDB: 76637 Background Trend Micro InterScan Web Security Suite is an application which dynamically defends against web-based attacks at the Internet gateway. Problem Trend Micro InterScan Web Security Suite is vulnerable to local privilege escalation vulnerability...
Trend Micro InterScan Web Security Suite Local Privilege Escalation
Added: 12/09/2011 BID: 50380 OSVDB: 76637 Background Trend Micro InterScan Web Security Suite is an application which dynamically defends against web-based attacks at the Internet gateway. Problem Trend Micro InterScan Web Security Suite is vulnerable to local privilege escalation vulnerability...
Trend Micro InterScan Web Security Suite Local Privilege Escalation
Added: 12/09/2011 BID: 50380 OSVDB: 76637 Background Trend Micro InterScan Web Security Suite is an application which dynamically defends against web-based attacks at the Internet gateway. Problem Trend Micro InterScan Web Security Suite is vulnerable to local privilege escalation vulnerability...
Trend Micro InterScan Web Security Suite "patchCmd" 权限提升漏洞
趋势科技的InterScan Web Security Suite(IWSS)在网关处针对基于Web方式的攻击为企业网络提供动态的、集成式的安全保护。 Trend Micro InterScan Web Security Suite for Linux在实现上存在安全漏洞,恶意本地用户可利用此漏洞提升权限。 此漏洞源于在执行某些操作时setuid/setgid root /opt/trend/iwss/data/patch/bin/patchCmd的错误,可通过在CWD中创建PatchExe.sh或RollbackExe.sh脚本获取root权限并执行该二进制文件。 Trend Micr...
Trend Micro InterScan Web Security Suite Default Credentials
Trend Micro InterScan Web Security Suite is installed on the remote host. It is possible to log into the web management interface using default credentials. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid35649;...
CVE-2007-6312
Cross-site scripting XSS vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote attackers to inject arbitrary web script or HTML via the username field...
CVE-2007-6312
CVE-2007-6312 is an XSS vulnerability in the login page of Websense’s Web Reporting Tools portal (Websense Enterprise/Web Security Suite 6.3). The issue arises because the username field is not properly sanitized, allowing remote attackers to inject arbitrary script or HTML via that input. Affect...
CVE-2007-6312
Cross-site scripting XSS vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote attackers to inject arbitrary web script or HTML via the username field...
Trend Micro IWSS Console Management Detection (HTTP)
The remote host appears to run the Trend Micro Interscan Web Security Suite. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...