Lucene search
HistoryMay 07, 2004 - 4:00 a.m.
CVE-2004-2006
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
5.1%
Trend Micro OfficeScan 3.0 - 6.0 has default permissions of “Everyone Full Control” on the installation directory and registry keys, which allows local users to disable virus protection.
Affected configurations
Node
trend_microofficescanMatch3.0corporate
ORtrend_microofficescanMatchcorporate_3.5
ORtrend_microofficescanMatchcorporate_3.11
ORtrend_microofficescanMatchcorporate_3.13
ORtrend_microofficescanMatchcorporate_3.54
ORtrend_microofficescanMatchcorporate_5.02
ORtrend_microofficescanMatchcorporate_5.58
| Vendor | Product | Version | CPE |
|---|---|---|---|
| trend_micro | officescan | 3.0 | cpe:2.3:a:trend_micro:officescan:3.0:*:corporate:*:*:*:*:* |
| trend_micro | officescan | corporate_3.5 | cpe:2.3:a:trend_micro:officescan:corporate_3.5:*:*:*:*:*:*:* |
| trend_micro | officescan | corporate_3.11 | cpe:2.3:a:trend_micro:officescan:corporate_3.11:*:*:*:*:*:*:* |
| trend_micro | officescan | corporate_3.13 | cpe:2.3:a:trend_micro:officescan:corporate_3.13:*:*:*:*:*:*:* |
| trend_micro | officescan | corporate_3.54 | cpe:2.3:a:trend_micro:officescan:corporate_3.54:*:*:*:*:*:*:* |
| trend_micro | officescan | corporate_5.02 | cpe:2.3:a:trend_micro:officescan:corporate_5.02:*:*:*:*:*:*:* |
| trend_micro | officescan | corporate_5.58 | cpe:2.3:a:trend_micro:officescan:corporate_5.58:*:*:*:*:*:*:* |
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2004-2006