Trend Micro Control Manager Input Validation Flaw in Ad Hoc Query Module Lets Remote Users Inject SQL Commands
Control Manager - 3.0, 3.5, 5.0, 5.5, 6.0
Trend Micro has been notified of a potential product vulnerability in Control Manager.
A vulnerability has been reported in Trend Micro Control Manager, which can be exploited by malicious users to conduct SQL injection attacks.
A remote user can execute SQL commands on the underlying database.
For 5.5: Critical Patch - Build 1823
For 6.0: Critical Patch - Build 1449