Intrusion Prevention

Trend.Micro.Smart.Protection.ccca.ajaxhandler.Code.Execution

Description

This indicates an attack attempt to exploit a remote Code Execution vulnerability in Trend Micro Smart Protection Server.
The vulnerability is due to an error when the vulnerable software attempts to handle a maliciously crafted user input. An attacker can exploit this to execute arbitrary code within context of the application, via a crafted request.

Affected Products

Trend Micro Smart Protection Server Version 2.5
Trend Micro Smart Protection Server Version 2.6
Trend Micro Smart Protection Server Version 3.0

Impact

System Compromise: Remote attackers can execute arbitrary code within the context of the target system.

Recommended Actions

Apply the latest patch from the vendor.
https://success.trendmicro.com/solution/1114913

CVE References

CVE-2016-6266