Vulnerability
As the Trend Micro Threat Discovery Appliance 2.6.1062r1 processes a session id cookie, directory traversal enables a remote, unauthenticated intruder to delete arbitrary files as root. This can be used to bypass authentication or to trigger a denial of service.
Mitigation / Precaution
- In order to patch this vulnerability, please install the official patch Trend Micro Threat Discovery Appliance made available for supported, vulnerable instances.
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
