N/A

Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack.

N/A

N/A

Trend Micro ScanMail for Microsoft Exchange 安全漏洞

Trend Micro ScanMail for Microsoft Exchange（SMEX）是美国趋势科技（Trend Micro）开发和维护的一套专为保护Microsoft Exchange邮件服务器免遭病毒、间谍软件和垃圾邮件的威胁而设计的邮件防火墙解决方案。 Trend Micro SMEX Hot Fix Build 3318之前10.2版本和Hot Fix Build 4180之前11.0版本中存在安全漏洞，该漏洞源于程序创建Web控制的会话ID使用可预测值的随机数生成器。远程攻击者可通过

N/A

N/A