|
|
|||
| Rule General Information |
|---|
| Release Date: | 2017-05-05 | |
| Rule Name: | WEB-OTHER Trend Micro Control Manager download.php Information Disclosure | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | An information disclosure vulnerability exists in Trend Micro Control Manager. The vulnerability is due to security misconfiguration which allows access to the unreferenced download.php file, which in turn allow reading of the arbitrary files. | |
| Impact: | Information disclosure | |
| Affected OS: | Windows, Other Unix, FreeBSD, Linux | |
| Reference: | ZeroDayInitiative:ZDI-17-061 ZeroDayInitiative:ZDI-17-062 |
|
| Solutions |
|---|
| Update vendor's patch. |