The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Trend Micro IMSS

Trend Micro InterScan Messaging Security: privilege escalation via the Management Portal
An attacker can bypass restrictions to the Management Portal of Trend Micro InterScan Messaging Security with data retrieved from a log file, in order to escalate his privileges...
1119277, CVE-2018-3609, VIGILANCE-VUL-25277
Trend Micro InterScan Messaging Security: two vulnerabilities
An attacker can use several vulnerabilities of Trend Micro InterScan Messaging Security...
1117723, CVE-2017-11391, CVE-2017-11392, VIGILANCE-VUL-23418, ZDI-17-502, ZDI-17-504
sudo: privilege escalation via the parsing of /proc/pid/stat
A local attacker can tamper with the parsing of /proc/[pid]/stat by sudo, in order to escalate his privileges...
1117723, CERTFR-2017-AVI-238, CERTFR-2017-AVI-365, CVE-2017-1000367, CVE-2017-1000368, DLA-1011-1, DLA-970-1, DSA-3867-1, FEDORA-2017-54580efa82, FEDORA-2017-8b250ebe97, FEDORA-2017-facd994774, JSA10824, JSA10826, openSUSE-SU-2017:1455-1, openSUSE-SU-2017:1697-1, RHSA-2017:1381-01, RHSA-2017:1382-01, RHSA-2017:1574-01, SB10205, SSA:2017-150-01, SUSE-SU-2017:1446-1, SUSE-SU-2017:1450-1, SUSE-SU-2017:1626-1, SUSE-SU-2017:1627-1, SUSE-SU-2017:1778-1, Synology-SA-17:19, USN-3304-1, USN-3968-1, USN-3968-2, VIGILANCE-VUL-22865
Trend Micro InterScan Messaging Security Suite: multiple vulnerabilities
An attacker can use several vulnerabilities of the Linux kenel, the glibc library and OpenSSL included in Trend Micro InterScan Messaging Security Suite...
1117318, VIGILANCE-VUL-22613
Trend Micro InterScan Messaging Security Virtual Appliance: multiple vulnerabilities
An attacker can use several vulnerabilities of Trend Micro InterScan Messaging Security...
1116821, CVE-2017-7896, VIGILANCE-VUL-22499
Trend Micro InterScan Messaging Security Suite: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Trend Micro InterScan Messaging Security Suite, in order to run JavaScript code in the context of the web site...
1117094, CVE-2012-1302, VIGILANCE-VUL-22448
Trend Micro InterScan Messaging Security Suite: information disclosure via admin
An authenticated attacker can get the content of any file with the system privileges via the administration console of Trend Micro InterScan Messaging Security Suite, in order to get sensitive information...
VIGILANCE-VUL-22235, ZDI-17-187
Trend Micro InterScan Messaging Security Virtual Appliance: three vulnerabilities
An attacker can use several vulnerabilities of Trend Micro InterScan Messaging Security Virtual Appliance...
1114746, 2016-0118, 2016-0159, 201X-0007, CVE-2016-4914, CVE-2016-4915, CVE-2016-4916, VIGILANCE-VUL-20799
OpenSSL: man in the middle via ChangeCipherSpec
An attacker can act as a man in the middle between a client and a server using OpenSSL, in order to read or alter exchanged data...
1676496, 1690827, aid-06062014, c04336637, c04347622, c04363613, CERTFR-2014-AVI-253, CERTFR-2014-AVI-254, CERTFR-2014-AVI-255, CERTFR-2014-AVI-260, CERTFR-2014-AVI-274, CERTFR-2014-AVI-279, CERTFR-2014-AVI-286, CERTFR-2014-AVI-513, cisco-sa-20140605-openssl, cpuoct2016, CTX140876, CVE-2014-0224, DOC-53313, DSA-2950-1, DSA-2950-2, FEDORA-2014-17576, FEDORA-2014-17587, FEDORA-2014-7101, FEDORA-2014-7102, FG-IR-14-018, FreeBSD-SA-14:14.openssl, HPSBHF03052, HPSBUX03046, JSA10629, MDVSA-2014:105, MDVSA-2014:106, MDVSA-2015:062, NetBSD-SA2014-006, openSUSE-SU-2014:0764-1, openSUSE-SU-2014:0765-1, openSUSE-SU-2015:0229-1, openSUSE-SU-2016:0640-1, RHSA-2014:0624-01, RHSA-2014:0625-01, RHSA-2014:0626-01, RHSA-2014:0627-01, RHSA-2014:0628-01, RHSA-2014:0629-01, RHSA-2014:0630-01, RHSA-2014:0631-01, RHSA-2014:0632-01, RHSA-2014:0633-01, RHSA-2014:0679-01, RHSA-2014:0680-01, SA40006, SA80, SB10075, sk101186, SOL15325, SPL-85063, SSA:2014-156-03, SSA-234763, SSRT101590, SUSE-SU-2014:0759-1, SUSE-SU-2014:0759-2, SUSE-SU-2014:0761-1, SUSE-SU-2014:0762-1, SUSE-SU-2019:14246-1, USN-2232-1, USN-2232-2, USN-2232-3, USN-2232-4, VIGILANCE-VUL-14844, VMSA-2014-0006, VMSA-2014-0006.1, VMSA-2014-0006.10, VMSA-2014-0006.11, VMSA-2014-0006.2, VMSA-2014-0006.3, VMSA-2014-0006.4, VMSA-2014-0006.5, VMSA-2014-0006.6, VMSA-2014-0006.7, VMSA-2014-0006.8, VMSA-2014-0006.9, VU#978508
Trend Micro InterScan Messaging Security Virtual Appliance: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Trend Micro InterScan Messaging Security Virtual Appliance, in order to execute JavaScript code in the context of the web site...
CVE-2014-3922, VIGILANCE-VUL-14817
Our database contains other pages. You can request a free trial to read them.

Display information about Trend Micro IMSS: