Directory Permissions Flaw in Trend Micro InterScan VirusWall
CVE-2000-1106

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Interscan Viruswall
Vendor: CVE Published:; 9 January 2001

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2000-1106?

Trend Micro's InterScan VirusWall has a security vulnerability due to the creation of an 'Intscan' share within the 'InterScan' directory. This share is configured with permissions that allow Full Control to the Everyone group, posing a significant risk. Attackers can exploit this misconfiguration to alter VirusWall programs, leading to unauthorized access and potential exploitation of the system. Organizations using this product should take immediate action to secure their configurations to prevent unauthorized privilege escalation.

References

http://archives.neohapsis.com/archives/bugtraq/2000-12/00...

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/5606

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/2014

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 9, 2001
Vulnerability Reserved
Dec 14, 2000