A command injection vulnerability exists in Trend Micro Deep Discovery Director 1.1 that allows an attacker to restore accounts that can access the pre-configuration console.
https://www.coresecurity.com/advisories/trend-micro-deep-discovery-director-multiple-vulnerabilities