TITLE: InterScan Messaging Security Suite Insecure Default Directory Permissions SECUNIA ADVISORY ID: SA19022 VERIFY ADVISORY: http://secunia.com/advisories/19022/ CRITICAL: Less critical IMPACT: Manipulation of data, Privilege escalation WHERE: Local system SOFTWARE: Trend Micro InterScan Messaging Security Suite 5.x http://secunia.com/product/61/ DESCRIPTION: Dominique GREGOIRE has reported a security issue in InterScan Messaging Security Suite (IMSS), which can be exploited by malicious, local users to gain escalated privileges. The problem is that insecure default permissions (grants "Everyone" group "Full Control") are set on the "ISNTSmtp" subdirectory. This can be exploited to remove, manipulate, and replace any of the application's files. The security issue has been reported in version 5.5 build 1183. Other versions may also be affected. The security issue could not be confirmed in version 5.7.0.1121 and may therefore have been fixed silently in an unknown version. SOLUTION: Update to version 5.7.0.1121 or later. PROVIDED AND/OR DISCOVERED BY: Dominique GREGOIRE ORIGINAL ADVISORY: http://www.secumind.net/content/french/modules/news/article.php?storyid=9 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------