Malerisch

**Name of the Vulnerable Software and Affected Versions** Trend Micro Mobile Security (Enterprise) versions prior to 9.7 Patch 3 **Description** The issue allows remote attackers to execute arbitrary code on vulnerable installations due to unrestricted file uploads. This can be achieved through various file upload functions, including `upload img file`, `upload font file`, `upload wallpaper file`, and `upload app file`. **Recommendations** For versions prior to 9.7 Patch 3, update to version 9.7 Patch 3 or later to resolve the issue. As a temporary workaround, consider restricting or disabling the file upload functionality until a patch is applied. Specifically, restrict access to the `upload img file`, `upload font file`, `upload wallpaper file`, and `upload app file` functions to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Threat Discovery Appliance version 2.6.1062r1 **Description** A command execution flaw exists in the admin sys time.cgi interface, specifically with the `timezone` parameter. **Recommendations** For version 2.6.1062r1, avoid using the `timezone` parameter in the admin sys time.cgi interface until a fix is available. As a temporary workaround, consider restricting access to the admin sys time.cgi interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Threat Discovery Appliance version 2.6.1062r1 **Description** The issue allows a remote, unauthenticated attacker to delete arbitrary files as root due to directory traversal when processing a `session id` cookie. This can be used to bypass authentication or cause a denial of service. The vulnerability exists because of incorrect restriction of the directory path name with limited access during the processing of the `session id` parameter from the cookie file. **Recommendations** For Trend Micro Threat Discovery Appliance version 2.6.1062r1, as a temporary workaround, consider restricting access to the `session id` cookie parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Alcatel-Lucent OmniVista versions 2.0 through 3.0 **Description** The issue allows an attacker to bypass authentication and invoke certain methods, including `AddJobSet`, `AddJob`, and `ExecuteNow`, which can be used to run arbitrary commands on the server with the privilege of `NT AUTHORITYSYSTEM`. This can be achieved by querying different ORBs interfaces using the GIOP protocol on TCP port 30024. **Recommendations** For Alcatel-Lucent OmniVista versions 2.0 through 3.0, apply proper firewall rules to prevent unauthorized clients from connecting to the OmniVista server, as per the product security deployment technical guidelines.