CVE-2001-0958 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Micro Interscan Emanager

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

5.9%

top 9.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trend Micro Interscan Emanager Trend Micro Interscan Viruswall

Timeline

PublishedSep 12

Latest updateApr 30

Description

Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to execute arbitrary code via long arguments to the CGI programs (1) register.dll, (2) ContentFilter.dll, (3) SFNofitication.dll, (4) register.dll, (5) TOP10.dll, (6) SpamExcp.dll, and (7) spamrule.dll.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDtrend_micro/interscan_emanager3.51, 3.51_j+1

▶NVDtrend_micro/interscan_viruswall4 versions+3

Patches

Patch: archives.neohapsis.com ↗Patch: www.securityfocus.com ↗Patch: archives.neohapsis.com ↗

🔴Vulnerability Details

GHSA

GHSA-8h39-qrhc-p92f: Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3↗2022-04-30

▶

CVEList

CVE-2001-0958: Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3↗2002-02-02

▶