CVE-2001-1151

Sažetak

Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.

Reference

http://www.securityfocus.com/archive/1/220666
http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=318
https://exchange.xforce.ibmcloud.com/vulnerabilities/7286

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

19-12-2017 - 02:29

Objavljeno

15-10-2001 - 04:00