Intrusion PreventionTrend.Micro.InterScan.WS.VA.DecryptPasswd.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in Trend Micro InterScan Web Security Virtual Appliance.
The vulnerability is due to improper validation of the length of user-supplied data in HTTP requests. A remote attacker can exploit the vulnerability by sending a malicious request to the target server. Successful exploitation of these vulnerabilities could allow arbitrary code execution on the target server in the security context of iscan account.
Affected Products
Trend Micro InterScan Web Security Virtual Appliance 6.5 prior to 6.5 SP2 Hotfix 1919
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://success.trendmicro.com/solution/000281954
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2021-04-01 | 18.050 | Default_action:pass:drop |
| 2021-01-27 | 17.006 | |
| 2021-01-21 | 17.005 | |
| 2021-01-19 | 17.002 |
| ID | 49746 |
| Created | Jan 11, 2021 |
| Updated | Aug 04, 2021 |
| Risk |
|
| CVE ID | CVE-2020-28578 |
| Exploit Prediction Score | 2.66% |
| Default Action | drop |
| Active | |
| Affected OS | Linux |
| Affected App | Other |