Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Security Bulletin: Trend Micro Virtual Mobile Infrastructure (VMI) Remote Code Execution Vulnerability

    • Updated:
    • 6 Oct 2016
    • Product/Version:
    • Safe Mobile Workforce 1.0
    • Virtual Mobile Infrastructure 5.0
    • Platform:
    • Linux すべて
Summary

Release Date: September 30, 2016

Trend Micro Vulnerability Identifier(s):  2016-0151

Platform(s): Linux

Trend Micro has released an enhancement pack for Trend Micro Virtual Mobile Infrastructure (VMI). This release will address the vulnerabilities in the product that could potentially allow a remote attacker to execute arbitrary code on vulnerable installations.

Affected Product

ProductAffected versionPlatformLanguage
Virtual Mobile Infrastructure5.0LinuxEnglish
Details
Public

Solution

Trend Micro has released the following solution to address the issue:

ProductUpdated versionNotesPlatformAvailability
Virtual Mobile InfrastructureVersion 5.1ReadmeLinuxOctober 4, 2016

Vulnerability Details

This update resolves some vulnerabilities in Trend Micro Virtual Mobile Infrastructure in which a remote attacker could attain code execution, elevated privileges, or directory traversal abilities.

Customers are highly encouraged to update to the latest build as soon as possible.

Mitigating Factors

Remote code execution generally requires that an attack has access (physical or remote) to a vulnerable machine. Customers are advised to update to the latest patches and review access to critical systems to ensure policies and perimeter security are up to date.

These vulnerabilities require authentication on the web administration panel.

However, even though an exploit may require several specific conditions to be met, Trend Micro strongly encourages customers to update to the latest build as soon as possible.

Acknowledgement

Trend Micro would like to thank the following individual(s) for responsibly disclosing these issues and working with Trend Micro to help protect our customers:

Premium
Internal
Rating:
Category:
Troubleshoot
Solution Id:
1115411
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.