Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0432 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Interscan Viruswall

4 documents4 sources

Severity

10.0CRITICALNVD

EPSS

6.0%

top 9.28%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Trend Micro Interscan Viruswall

Timeline

PublishedJul 2

Latest updateApr 30

Description

Buffer overflows in various CGI programs in the remote administration service for Trend Micro Interscan VirusWall 3.01 allow remote attackers to execute arbitrary commands.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDtrend_micro/interscan_viruswall3.0.1

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-6wvf-36hc-v85j: Buffer overflows in various CGI programs in the remote administration service for Trend Micro Interscan VirusWall 3↗2022-04-30

▶

CVEList

CVE-2001-0432: Buffer overflows in various CGI programs in the remote administration service for Trend Micro Interscan VirusWall 3↗2001-05-24

▶

💥Exploits & PoCs

Exploit-DB

Trend Micro Interscan VirusWall (Linux) 3.0.1 - Multiple Program Buffer Overflows↗2001-04-13

▶