CVE-2001-1151

Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.

Published: Oct 15, 2001
Updated: Apr 13, 2023
CVE: CVE-2001-1151
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
trend_micro / virus_buster	corporate_3.53	corporate_3.53.x
trend_micro / officescan	corporate_3.53	corporate_3.53.x

http://www.securityfocus.com/archive/1/220666
http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=318
https://exchange.xforce.ibmcloud.com/vulnerabilities/7286

Vulnerability Database

289,784

CVE-2001-1151