CERT-MU :Vulnerability

Home | Search | FAQ | Site Map | Contact Us

|| Hotline : 800 2378 || To contact CERT-MU send e-mail on --> info[at]cert-mu.gov.mu || To report incident e-mail on --> incident[at]cert-mu.gov.mu || To report Vulnerabilities send e-mail on --> Vulnerability[at]cert-mu.gov.mu ||

Charter & Mission

CERT-MU Services

Constituency

Authority

Incident Reporting

Vulnerability Reporting

Incident Statistics Forms

Vol. 2, Feb 2012

Vol. 1, Oct 2011

World CERTs

Security Sites

Security Tools

Antivirus Resources

Email Abuse

Network Abuse

Anti-Spam Initiative

Cyber Security Portal

Safer Internet Day

Computer Security Day

National Computer Board

Authorized to use CERT(TM) - CERT is a mark owned by Carnegie Mellon University

CERT-MU Vulnerability Note VN-2008-6

Web Management Authentication Bypass vulnerability in Trend Micro Products

Original issue date: August 29, 2008

Severity Rating: High

Systems Affected

Trend Micro OfficeScan 7.0
Trend Micro OfficeScan 7.3
Trend Micro OfficeScan 8.0
Worry-Free Business Security 5.0
Trend Micro Client/Server/Messaging Suite 3.5
Trend Micro Client/Server/Messaging Suite 3.6

NOTE: Other versions may also be affected

Overview

An authentication bypass vulnerability has been reported in various Trend Micro products which could be exploited by an attacker to bypass the authentication layer provided by the Web Management Console in various Trend Micro products.

Description

Session tokens are used to uniquely identify an authenticated user on an application and to keep track of the various states of the operations performed by the authenticated user.

The vulnerability is caused by insufficient entropy being used to create a random session token for identifying an authenticated manager using the web management console.

This vulnerability could be exploited by an attacker by impersonating a currently logged on manager by brute forcing the authentication token and to get the administrative control over the vulnerable application. After the administrative rights are gained by the attacker, an attacker could execute arbitrary code by changing the configuration of the vulnerable application.

Solution

Apply appropriate patched provided by the vendor
http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN
_CriticalPatch_B2402_readme.txt

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Vendor Information

Trend Micro
http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN
_CriticalPatch_B2402_readme.txt

CVE-Name

CVE-2008-2433

References

SecuriTeam
http://www.securiteam.com/windowsntfocus/5TP0L0KP5S.html

SecurityFocus
http://www.securityfocus.com/bid/30792/discuss

SecurityTracker
http://www.securitytracker.com/alerts/2008/Aug/1020732.html