Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-1859 — Path Traversal in Micro Interscan Viruswall FOR Windows NT

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

15.3%

top 5.36%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Trend Micro Interscan Viruswall FOR Windows NT

Timeline

PublishedMar 24

Latest updateApr 29

Description

Directory traversal vulnerability in Trend Micro Interscan Web Viruswall in InterScan VirusWall 3.5x allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDtrend_micro/interscan_viruswall6 versions+5

Patches

Patch: kb.trendmicro.com ↗Patch: secunia.com ↗Patch: kb.trendmicro.com ↗

🔴Vulnerability Details

GHSA

GHSA-453p-67r6-5c96: Directory traversal vulnerability in Trend Micro Interscan Web Viruswall in InterScan VirusWall 3↗2022-04-29

▶

CVEList

CVE-2004-1859: Directory traversal vulnerability in Trend Micro Interscan Web Viruswall in InterScan VirusWall 3↗2005-05-10

▶

💥Exploits & PoCs

Exploit-DB

Trend Micro Interscan VirusWall localweb - Directory Traversal↗2004-03-24

▶