Secunia Security Advisory - Dominique GREGOIRE has reported a security issue in InterScan Messaging Security Suite (IMSS), which can be exploited by malicious, local users to gain escalated privileges.
8131fbaa99641c323d7e77bb319e17c2ea29dc0e67c4c6d0e5c5b9972e0e597e
TITLE:
InterScan Messaging Security Suite Insecure Default Directory
Permissions
SECUNIA ADVISORY ID:
SA19022
VERIFY ADVISORY:
http://secunia.com/advisories/19022/
CRITICAL:
Less critical
IMPACT:
Manipulation of data, Privilege escalation
WHERE:
Local system
SOFTWARE:
Trend Micro InterScan Messaging Security Suite 5.x
http://secunia.com/product/61/
DESCRIPTION:
Dominique GREGOIRE has reported a security issue in InterScan
Messaging Security Suite (IMSS), which can be exploited by malicious,
local users to gain escalated privileges.
The problem is that insecure default permissions (grants "Everyone"
group "Full Control") are set on the "ISNTSmtp" subdirectory. This
can be exploited to remove, manipulate, and replace any of the
application's files.
The security issue has been reported in version 5.5 build 1183. Other
versions may also be affected. The security issue could not be
confirmed in version 5.7.0.1121 and may therefore have been fixed
silently in an unknown version.
SOLUTION:
Update to version 5.7.0.1121 or later.
PROVIDED AND/OR DISCOVERED BY:
Dominique GREGOIRE
ORIGINAL ADVISORY:
http://www.secumind.net/content/french/modules/news/article.php?storyid=9
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------