CVE-2016-9316

MEDIUM

Trend Micro IWSVA <6.5-CP-1737 - XSS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-9316. PoCs published by SlidingWindow.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in Trend Micro IWSVA 6.5.x, including remote command execution via patch upload, sensitive information disclosure through configuration backup, privilege escalation by modifying admin accounts, and stored XSS in user account management.

Description

Multiple stored Cross-Site-Scripting (XSS) vulnerabilities in com.trend.iwss.gui.servlet.updateaccountadministration in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earlier allow authenticated, remote users with least privileges to inject arbitrary HTML/JavaScript code into web pages. This was resolved in Version 6.5 CP 1737.

Exploits (1)

exploitdb WORKING POC VERIFIED

by SlidingWindow · textwebappshardware

https://www.exploit-db.com/exploits/41361

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in Trend Micro IWSVA 6.5.x, including remote command execution via patch upload, sensitive information disclosure through configuration backup, privilege escalation by modifying admin accounts, and stored XSS in user account management.

Classification

Working Poc 90%

Attack Type

Rce | Info Leak | Lpe | Xss

Complexity

Moderate

Reliability

Reliable

Target: Trend Micro Interscan Web Security Virtual Appliance (IWSVA) 6.5.x

Auth required

Prerequisites: Low-privileged user access to the web management console · Network access to port 1812 · Valid session tokens (JSESSIONID, CSRFGuardToken)

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation T1003 - OS Credential Dumping T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/96252

Patch, Vendor Advisory x_refsource_confirm

https://success.trendmicro.com/solution/1116672

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1037849

Scores

CVSS v3 5.4

EPSS 0.0277

EPSS Percentile 84.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

trendmicro/interscan_web_security_virtual_appliance < 6.5

Published Feb 21, 2017

Tracked Since Feb 18, 2026