{"vuid":"VU#248692","idnumber":"248692","name":"Trend Micro Deep Discovery threat appliance contains multiple vulnerabilities","keywords":["xss","direct request","CWE-79","CWE-425"],"overview":"Multiple versions of the Trend Micro Deep Discovery threat appliance are vulnerable to cross-site scripting and authentication bypass.","clean_desc":"The Trend Micro Deep Discovery platform \"enables you to detect, analyze, and respond to today’s stealthy, targeted attacks in real time.\"  It may be deployed on a network as an appliance. The Trend Micro Deep Discovery Threat Appliance version 3.7.1096 is vulnerable to cross-site scripting and authentication bypass. CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') - CVE-2015-2872 The contentURL parameter of a request to index.html is not properly validated and vulnerable to reflected cross-site scripting. CWE-425: Direct Request ('Forced Browsing') - CVE-2015-2873 Several URLs, including the system log, whitelist, and blacklist, are accessible to a non-administrator user by direct request. The pages do not properly check for authorization. Trend Micro has released an advisory on these issues. The CVSS score below is based on CVE-2015-2873.","impact":"An authenticated user without administrator privileges may access and modify certain system configuration settings. An unauthenticated remote user may conduct cross-site scripting attacks.","resolution":"Apply an update Trend Micro has released updates to address this issue. Affected users are encouraged to update as soon as possible. Affected versions are listed below with the patch number corresponding to the update (for example, if you use 3.8 English, update to 3.8.1263): Affected Version (Version Number and Language)\nUpdated Patch Version (Versions prior to the one listed here may be affected)\n3.8 English \n3.8.1263 - Critical Patch B1263\n3.8 Japanese \n3.8.2047 - Critical Patch B2047\n3.7 English \n3.7.1248 - Critical Patch B1248\n3.7 Japanese \n3.7.1228 - Critical Patch B1228\n3.7 Simplified Chinese \n3.7.1227 - Critical Patch B1227\n3.6 English \n3.6.1217 - Critical Patch B1217\n3.5 English \n3.5.1477 - Critical Patch B1477\n3.5 Japanese \n3.5.1554 - Critical Patch B1544\n3.5 Simplified Chinese \n3.5.1433 - Critical Patch B1433","workarounds":"","sysaffected":"","thanks":"Thanks to John Page \"hyp3rlinx\")\n for reporting this vulnerability to us.","author":"This document was written by Garret Wassermann.","public":["http://esupport.trendmicro.com/solution/en-US/1112206.aspx","http://cwe.mitre.org/data/definitions/79.html","http://cwe.mitre.org/data/definitions/425.html"],"cveids":["CVE-2015-2872","CVE-2015-2873"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2015-04-20T13:02:10Z","publicdate":"2015-08-18T00:00:00Z","datefirstpublished":"2015-08-18T14:52:16Z","dateupdated":"2015-08-18T14:52:16Z","revision":38,"vrda_d1_directreport":"1","vrda_d1_population":"3","vrda_d1_impact":"3","cam_widelyknown":"0","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"0","cam_impact":"0","cam_easeofexploitation":"0","cam_attackeraccessrequired":"0","cam_scorecurrent":"0","cam_scorecurrentwidelyknown":"0","cam_scorecurrentwidelyknownexploited":"0","ipprotocol":"","cvss_accessvector":"N","cvss_accesscomplexity":"L","cvss_authentication":null,"cvss_confidentialityimpact":"P","cvss_integrityimpact":"P","cvss_availabilityimpact":"N","cvss_exploitablity":null,"cvss_remediationlevel":"OF","cvss_reportconfidence":"UR","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"M","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"5.5","cvss_basevector":"AV:N/AC:L/Au:S/C:P/I:P/A:N","cvss_temporalscore":"4.1","cvss_environmentalscore":"3.04664907159112","cvss_environmentalvector":"CDP:ND/TD:M/CR:ND/IR:ND/AR:ND","metric":0.0,"vulnote":null}