Interscan Web Security Virtual Appliance

The following section lists all Trend Micro products and versions that have reached End-of-Life (EOL) status (formerly End-of-Support or EOS) in the last twelve (12) months and are no longer actively supported by Trend Micro. If the product/version you are looking for is not listed below, it is either still supported or is an older version that has been End-of-Life for more than 12 months.Please refer to Trend Micro’s latest End-of-Life Policy for more information on milestone definitions and standard timelines. 

According to this Security Advisory, Microsoft provides recommendations for administrators to harden the configurations for LDAP channel binding and LDAP signing on Active Directory domain controllers.

When the IP user cache is disabled in InterScan Web Security Virtual Appliance (IWSVA), users may experience occasional authentication pop-ups appear when browsing the internet and they are asked to provide their Active Directory credentials. At the same time, the log file of the Authentication Daemon (var/iwss/log/AuthDaemon.log.YYYYMMDD.XXXX) contains the following error message: [ERROR]: connect_ntlm_type_1 return error: 91

This article enumerates the steps on how to enable SOCKS5 proxy in InterScan Web Security Virtual Appliance 6.5 SP2.

This article lists the priority of the Rule Actions in URL Filtering tab from highest to lowest.

Individuals or site owners who feel that a website has a wrong rating or is classified incorrectly by Trend Micro can visit Site Safety Center to have the website reclassified. Site Safety Center allows you to verify the rating and category of a website and request for reclassification via the Give Feedback link. 

Trend Micro is continually refining and enhancing its detection technology, and as a result will be consolidating and enhancing other patterns in the products.  As these patterns are integrated into other patterns, we will be retiring the updates of soon-to-be legacy standalone endpoint network patterns.Below is an outline of the pattern migrations .Pattern to be retiredDate of retirementNew pattern technology Global C&C IP ListRelevance Rule pattern September 15, 2023 Web Reputation Endpoint Patch PatternVulnerability Protection Pattern

When installing InterScan Web Security Virtual Appliance 6.5 SP4 EN on a Generation 2 VM in Hyper-V , administrators may encounter the error message “Image hash and certificate is not allowed.

On the InterScan Web Security Virtual Appliance (IWSVA) Admin Console, the New Domain and Untested URL categories are not showing under the “Internet Security” and “General” sections: New Domain category is missing under HTTP > URL Filtering > Policies > Internet Security: Click the image to enlarge. Untested URL category is missing under HTTP > URL Filtering > Policies > General: Click the image to enlarge.

Release Date: May 30, 2024CVE Identifier(s): CVE-2024-36359Platform(s): Virtual ApplianceCVSS 3.0 Score(s): 5.4Severity Rating(s): MediumTrend Micro has released a new critical patch (CP) for InterScan Web Security Virtual Appliance (IWSVA) 6.5 that resolves a cross-site scripting (XSS) privilege escalation vulnerability.