Description
Cross-site request forgery (CSRF) vulnerability in saveAccountSubTab.imss in Trend Micro InterScan Messaging Security Suite 7.1-Build_Win32_1394 allows remote attackers to hijack the authentication of administrators for requests that create admin accounts via a saveAuth action.
Exploits (1)
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1027544
Exploit, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/471364
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/50620
Scores
EPSS
0.0123
EPSS Percentile
79.3%
Details
CWE
CWE-352
Status
published
Products (1)
trendmicro/interscan_messaging_security_suite
7.1
Published
Sep 17, 2012
Tracked Since
Feb 18, 2026