Trend Micro InterScan Web Security Virtual Appliance testConfiguration OS Command Injection Exploit

Trend Micro InterScan Web Security Virtual Appliance is prone to an OS command injection vulnerability when handling HTTP requests for the /rest/testConfiguration resource. This vulnerability can be leveraged by a remote, unauthenticated attacker to execute arbitrary code on the vulnerable server.
Exploit type: 
Platform: 
Vulnerabilty ID: 
NOCVE-9999-74988
Product Version: 
2016_R1
Released Date: 
Thursday, June 9, 2016 - 00:00