Vulnerabilities > CVE-2003-1341 - Configuration vulnerability in Trend Micro Officescan and Virus Buster
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The default installation of Trend Micro OfficeScan 3.0 through 3.54 and 5.x allows remote attackers to bypass authentication from cgiChkMasterPasswd.exe and gain access to the web management console via a direct request to cgiMasterPwd.exe.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 13 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Trend Micro OfficeScan 3.x CGI Directory Insufficient Permissions Vulnerability. CVE-2003-1341. Remote exploit for windows platform |
| id | EDB-ID:22171 |
| last seen | 2016-02-02 |
| modified | 2003-01-15 |
| published | 2003-01-15 |
| reporter | Rod Boron |
| source | https://www.exploit-db.com/download/22171/ |
| title | Trend Micro OfficeScan 3.x CGI Directory Insufficient Permissions Vulnerability |
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0020.html
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0020.html
- http://kb.trendmicro.com/solutions/solutionDetail.asp?solutionId=13353
- http://kb.trendmicro.com/solutions/solutionDetail.asp?solutionId=13353
- http://secunia.com/advisories/7881
- http://secunia.com/advisories/7881
- http://www.osvdb.org/6181
- http://www.osvdb.org/6181
- http://www.securityfocus.com/bid/6616
- http://www.securityfocus.com/bid/6616
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11059
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11059