Trend Micro Data Loss Prevention Directory Traversal Vulnerability Network Vulnerability

Summary

Trend Micro Data Loss Prevention is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user- supplied input. A remote attacker could exploit this vulnerability using directory- traversal strings (such as '../') to gain access to arbitrary files on the targeted system. This may result in the disclosure of sensitive information or lead to a complete compromise of the affected computer. Trend Micro Data Loss Prevention 5.5 is vulnerable other versions may also be affected.

References

http://us.trendmicro.com/us/products/enterprise/data-loss-prevention/index.html
http://www.securityfocus.com/bid/48225

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

aeNovo Database Content Disclosure Vulnerability
3Com NBX VoIP NetSet Detection
/cgi-bin directory browsable ?
Apache Struts2 'XWork' Information Disclosure Vulnerability
Adobe ColdFusion HTTP Response Splitting Vulnerability

Take action and discover your vulnerabilities