Trend Micro InterScan VirusWall Remote Configuration

2001-04-13T00:00:00
ID OSVDB:607
Type osvdb
Reporter OSVDB
Modified 2001-04-13T00:00:00

Description

Vulnerability Description

This host is running the 'Trend Micro Interscan VirusWall' software. This software package is designed to scan for virus activity in Internet traffic. The web management interface included with this product does not properly authenticate users. An attacker could make changes to the configuration, and could remove the virus protection on the network.

Technical Description

This vulnerability check looks for the presence of '/interscan/cgi-bin/FtpSave.dll.' Attempt is made to utilize FtpSave.dll to save a non-intrusive configuration parameter.

Solution Description

Trend Micro has not released a patch for the vulnerability. It is recommended that access to the management interface be filter from the Internet.

Short Description

This host is running the 'Trend Micro Interscan VirusWall' software. This software package is designed to scan for virus activity in Internet traffic. The web management interface included with this product does not properly authenticate users. An attacker could make changes to the configuration, and could remove the virus protection on the network.

References:

CVE-2001-0432 Bugtraq ID: 2579