CVE-2015-3326 - Vulnerability Details - OpenCVE

Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Trend Micro	Scanmail

Configuration 1 [-]

OR	cpe:2.3:a:trend_micro:scanmail:10.2:::::microsoft_exchange::
	cpe:2.3:a:trend_micro:scanmail:11.0:::::microsoft_exchange::

No data.

References

Link	Providers
http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html
http://esupport.trendmicro.com/solution/en-US/1109669.aspx
http://www.securityfocus.com/bid/74661
http://www.securitytracker.com/id/1032323

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2015-05-14T00:00:00

Updated: 2024-08-06T05:47:56.319Z

Reserved: 2015-04-16T00:00:00

Link: CVE-2015-3326

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2015-05-14T00:59:03.647

Modified: 2025-04-12T10:46:40.837

Link: CVE-2015-3326

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-04-20T00:00:00", "descriptions": [{"lang": "en", "value": "Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-30T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://esupport.trendmicro.com/solution/en-US/1109669.aspx"}, {"tags": ["x_refsource_MISC"], "url": "http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html"}, {"name": "74661", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/74661"}, {"name": "1032323", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1032323"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-3326", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://esupport.trendmicro.com/solution/en-US/1109669.aspx", "refsource": "CONFIRM", "url": "http://esupport.trendmicro.com/solution/en-US/1109669.aspx"}, {"name": "http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html", "refsource": "MISC", "url": "http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html"}, {"name": "74661", "refsource": "BID", "url": "http://www.securityfocus.com/bid/74661"}, {"name": "1032323", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1032323"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T05:47:56.319Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://esupport.trendmicro.com/solution/en-US/1109669.aspx"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html"}, {"name": "74661", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/74661"}, {"name": "1032323", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1032323"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-3326", "datePublished": "2015-05-14T00:00:00", "dateReserved": "2015-04-16T00:00:00", "dateUpdated": "2024-08-06T05:47:56.319Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trend_micro:scanmail:10.2:*:*:*:*:microsoft_exchange:*:*", "matchCriteriaId": "81774648-66B6-4531-80AC-44B97AB9F4EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:trend_micro:scanmail:11.0:*:*:*:*:microsoft_exchange:*:*", "matchCriteriaId": "3C237907-068E-4ECF-862D-4DF7220C539B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack."}, {"lang": "es", "value": "Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 anterior a Hot Fix Build 3318 y 11.0 anterior a Hot Fix Build 4180 crea identificadores de sesi\u00f3n para la consola web utilizando un generador de n\u00fameros aleatorios con valores previsibles, lo que facilita a atacantes remotos evadir la autenticaci\u00f3n a trav\u00e9s de un ataque de fuerza bruta."}], "evaluatorComment": "<a href=\"https://cwe.mitre.org/data/definitions/330.html\">CWE-330: Use of Insufficiently Random Values</a>", "id": "CVE-2015-3326", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-05-14T00:59:03.647", "references": [{"source": "cve@mitre.org", "url": "http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://esupport.trendmicro.com/solution/en-US/1109669.aspx"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/74661"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1032323"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://esupport.trendmicro.com/solution/en-US/1109669.aspx"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/74661"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1032323"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}