Vulnerabilities > Trendmicro > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-02-10 | CVE-2010-0564 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Trendmicro Officescan Buffer overflow in Trend Micro URL Filtering Engine (TMUFE) in OfficeScan 8.0 before SP1 Patch 5 - Build 3510, possibly tmufeng.dll before 3.0.0.1029, allows attackers to cause a denial of service (crash or OfficeScan hang) via unspecified vectors. | 5.0 |
2009-02-17 | CVE-2009-0613 | Permissions, Privileges, and Access Controls vulnerability in Trendmicro Interscan web Security Suite 3.1 Trend Micro InterScan Web Security Suite (IWSS) 3.1 before build 1237 allows remote authenticated Auditor and Report Only users to bypass intended permission settings, and modify the system configuration, via requests to unspecified JSP pages. | 6.0 |
2009-02-17 | CVE-2009-0612 | Information Exposure vulnerability in Trendmicro products Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 3.x and InterScan Web Security Suite (IWSS) 3.x, when basic authorization is enabled on the standalone proxy, forwards the Proxy-Authorization header from Windows Media Player, which allows remote web servers to obtain credentials by offering a media stream and then capturing this header. | 4.3 |