Secunia Security Advisory - Secunia Research has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to bypass authentication.
00d5e659a255eb32a488ab3356538ab2d5a3346bcb4b136b8e5f056c83440926
----------------------------------------------------------------------
Want a new job?
http://secunia.com/secunia_security_specialist/
http://secunia.com/hardcore_disassembler_and_reverse_engineer/
----------------------------------------------------------------------
TITLE:
Trend Micro Products Web Management Authentication Bypass
SECUNIA ADVISORY ID:
SA31373
VERIFY ADVISORY:
http://secunia.com/advisories/31373/
CRITICAL:
Moderately critical
IMPACT:
Security Bypass, Brute force
WHERE:
>From local network
SOFTWARE:
Trend Micro Worry-Free Business Security 5.x
http://secunia.com/product/19538/
Trend Micro OfficeScan Corporate Edition 8.x
http://secunia.com/product/14630/
Trend Micro OfficeScan Corporate Edition 7.x
http://secunia.com/product/5007/
Trend Micro Client Server Messaging Security for SMB 3.x
http://secunia.com/product/13440/
DESCRIPTION:
Secunia Research has discovered a vulnerability in Trend Micro
OfficeScan, which can be exploited by malicious people to bypass
authentication.
The vulnerability is caused due to insufficient entropy in a random
session token used to identify an authenticated manager using the web
console. An attacker can impersonate a currently logged on manager by
predicting the authentication token.
NOTE: This vulnerability can further be exploited to execute
arbitrary code.
SOLUTION:
Apply patches.
Trend Micro OfficeScan 8.0 Service Pack 1:
http://www.trendmicro.com/ftp/products/patches/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2402.exe
Trend Micro OfficeScan 8.0:
http://www.trendmicro.com/ftp/products/patches/OSCE_8.0_Win_EN_CriticalPatch_B1351.exe
Trend Micro OfficeScan 8.0 Service Pack 1 Patch 1:
http://www.trendmicro.com/ftp/products/patches/OSCE_8.0_SP1_Patch1_Win_EN_CriticalPatch_B3037.exe
Worry-Free Business Security 5.0:
http://www.trendmicro.com/ftp/products/patches/WFBS_50_WIN_EN_CriticalPatch_B1404.exe
PROVIDED AND/OR DISCOVERED BY:
Dyon Balding, Secunia Research
ORIGINAL ADVISORY:
Trend Micro:
http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2402_readme.txt
http://www.trendmicro.com/ftp/documentation/readme/Readme_WFBS5
0_EN_CriticalPatch1404.txt
Secunia Research:
http://secunia.com/secunia_research/2008-31/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------