CVE-2001-1150Micro Officescan vulnerability

5 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
1.0%
top 22.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Trend Micro OfficescanTrend Micro Virus Buster
Timeline
PublishedAug 22
Latest updateApr 30

Description

Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDtrend_micro/virus_bustercorporate_3.52, corporate_3.53, corporate_3.54+2
NVDtrend_micro/officescancorporate_3.5, corporate_3.54+1

Patches

Patch: www.iss.netPatch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-mm78-2cpj-g7cw: Vulnerability in cgiWebupdate2022-04-30
CVEList
CVE-2001-1150: Vulnerability in cgiWebupdate2002-03-15

💥Exploits & PoCs

2
Exploit-DB
Solaris 2.5/2.6/7.0/8 - 'mailx -F' Local Buffer Overflow (2)2001-04-15
Exploit-DB
Solaris 2.5/2.6/7.0/8 - 'mailx -F' Local Buffer Overflow (1)2001-04-01
CVE-2001-1150 — Trend Micro Officescan vulnerability | cvebase