---------------------------------------------------------------------- Want a new job? http://secunia.com/secunia_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/ ---------------------------------------------------------------------- TITLE: Trend Micro Products Web Management Authentication Bypass SECUNIA ADVISORY ID: SA31373 VERIFY ADVISORY: http://secunia.com/advisories/31373/ CRITICAL: Moderately critical IMPACT: Security Bypass, Brute force WHERE: >From local network SOFTWARE: Trend Micro Worry-Free Business Security 5.x http://secunia.com/product/19538/ Trend Micro OfficeScan Corporate Edition 8.x http://secunia.com/product/14630/ Trend Micro OfficeScan Corporate Edition 7.x http://secunia.com/product/5007/ Trend Micro Client Server Messaging Security for SMB 3.x http://secunia.com/product/13440/ DESCRIPTION: Secunia Research has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to bypass authentication. The vulnerability is caused due to insufficient entropy in a random session token used to identify an authenticated manager using the web console. An attacker can impersonate a currently logged on manager by predicting the authentication token. NOTE: This vulnerability can further be exploited to execute arbitrary code. SOLUTION: Apply patches. Trend Micro OfficeScan 8.0 Service Pack 1: http://www.trendmicro.com/ftp/products/patches/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2402.exe Trend Micro OfficeScan 8.0: http://www.trendmicro.com/ftp/products/patches/OSCE_8.0_Win_EN_CriticalPatch_B1351.exe Trend Micro OfficeScan 8.0 Service Pack 1 Patch 1: http://www.trendmicro.com/ftp/products/patches/OSCE_8.0_SP1_Patch1_Win_EN_CriticalPatch_B3037.exe Worry-Free Business Security 5.0: http://www.trendmicro.com/ftp/products/patches/WFBS_50_WIN_EN_CriticalPatch_B1404.exe PROVIDED AND/OR DISCOVERED BY: Dyon Balding, Secunia Research ORIGINAL ADVISORY: Trend Micro: http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2402_readme.txt http://www.trendmicro.com/ftp/documentation/readme/Readme_WFBS5 0_EN_CriticalPatch1404.txt Secunia Research: http://secunia.com/secunia_research/2008-31/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------