CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-2996

Cross-site request forgery (CSRF) vulnerability in saveAccountSubTab.imss in Trend Micro InterScan Messaging Security Suite 7.1-Build_Win32_1394 allows remote attackers to hijack the authentication of administrators for requests that create admin accounts via a saveAuth action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.8%

CVSS Severity

CVSS v2 Score 6.8

References

http://secunia.com/advisories/50620
http://www.kb.cert.org/vuls/id/471364
http://www.securitytracker.com/id?1027544
http://secunia.com/advisories/50620
http://www.kb.cert.org/vuls/id/471364
http://www.securitytracker.com/id?1027544

Products affected by CVE-2012-2996

Trendmicro » Interscan Messaging Security Suite » Version: 7.1

cpe:2.3:a:trendmicro:interscan_messaging_security_suite:7.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2996

Products

Pricing

Contact Us