QwikSec

Security Database

CVE

CWE

Training

CVE-2001-1151

Published: Mar 15, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=318

x_refsource_MISC

officescan-config-file-access(7286)

vdb-entry

x_refsource_XF

20011015 [SNS Advisory No.44] Trend Micro OfficeScan Corporate Edition(Virus Buster Corporate Edition)

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.