Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Security holes exposed in Trend Micro, Websense, open source DLP

Security holes exposed in Trend Micro, Websense, open source DLP

2014/08/12

Dark Reading - (International) Two researchers from Duo Security and Tumblr presenting at the Black Hat conference reported identifying several cross-site scripting (XSS) and cross-site request forgery (CSRF) vulnerabilities in four commercial data loss prevention (DLP) products and one open-source DLP product that could allow attackers to access or manipulate data. The majority of the flaws were in the products' Web-based interfaces.

Source: http://www.darkreading.com/vulnerabilities---threats/security-holes-exposed-in-trend-micro-websense-open-source-dlp-/d/d-id/1297966

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:21:21