Vulnerabilities for Deep discovery director (...) - CXSECURITY.COM

Vulnerabilities for 'Deep discovery director'

2017-08-01

CVE-2017-11381

CWE-78

A command injection vulnerability exists in Trend Micro Deep Discovery Director 1.1 that allows an attacker to restore accounts that can access the pre-configuration console.

CVE-2017-11380

Backup archives were found to be encrypted with a static password across different installations, which suggest the same password may be used in all virtual appliance instances of Trend Micro Deep Discovery Director 1.1.

CVE-2017-11379

Configuration and database backup archives are not signed or validated in Trend Micro Deep Discovery Director 1.1.

>>> Vendor: Trendmicro 52 Products

Control manager

Interscan messaging security suite

Interscan web security suite

Trend micro antivirus

Internet security

Interscan web security virtual appliance

Mobile security

Trend micro internet security

Internet security 2010

Web security virtual appliance

Interscan messaging security virtual appliance

Deep discovery inspector

Password manager

Email encryption gateway

Business security

Smart protection server

Maximum security

Premium security

Threat discovery appliance

Deep discovery director

Deep discovery email inspector

Trend micro control manager

Encryption for email

Worry-free business security

Endpoint application control

Antivirus + security

Officescan monthly

Antivirus + security 2019

Internet security 2019

Maximum security 2019

Micro security 2019

Premium security 2019

Deep security manager

Vulnerability protection

Housecall for home networks

Deep security as a service

Antivirus for mac

Home network security

Officescan business security

Worry-free business security services

Serverprotect for network appliance filer

Copyright 2024, cxsecurity.com