Information Exposure in Trend Micro OfficeScan Corporate Edition
CVE-2001-1151

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Virus Buster; Officescan
Vendor: CVE Published:; 15 October 2001

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2001-1151?

Trend Micro OfficeScan Corporate Edition version 3.53 contains a vulnerability that permits remote attackers to access files stored in the /hotdownload directory without the need for authentication. This includes sensitive information such as the ofcscan.ini configuration file, which is inadequately protected and reveals weakly encrypted passwords. Such exposure can lead to unauthorized access and compromise of the affected system.

References

http://www.trendmicro.co.jp/esolution/solutionDetail.asp?...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/7286

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/220666

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Mar 15, 2002
Vulnerability published
Oct 15, 2001