Trend Micro Weak SSL Encryption
Publish date: 21 de julio de 2015
Gravedad: Medio
Fecha recomendada: 21 de julio de 2015
Descripción
Trend has been notified of potential vulnerability in InterScan Web Security products (IWSx) and Advanced Reporting and Management for InterScan Web Security Suite (IWARM).
It is believed to have two impacts in the management console server of products. One is to let unauthorized user decrypt message with weak encryption keys, and the other is to make any network traffic become plain text if it supported the NULL cipher.
Revelación de la información
Apply associated Trend Micro DPI Rules.