Trend Micro Weak SSL Encryption
Severity: MEDIUM
Advisory Date: JUL 21, 2015
DESCRIPTION
Trend has been notified of potential vulnerability in InterScan Web Security products (IWSx) and Advanced Reporting and Management for InterScan Web Security Suite (IWARM).
It is believed to have two impacts in the management console server of products. One is to let unauthorized user decrypt message with weak encryption keys, and the other is to make any network traffic become plain text if it supported the NULL cipher.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.