Описание
Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:trend_micro:officescan:corporate_3.53:*:*:*:*:*:*:*
cpe:2.3:a:trend_micro:virus_buster:corporate_3.53:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01095
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.
EPSS
Процентиль: 77%
0.01095
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other