22 matches found
CVE-2001-0432
The vulnerability CVE-2001-0432 affects Trend Micro Interscan VirusWall 3.01 through its remote administration CGI interface. Multiple CGI programs may overflow when given crafted inputs, allowing remote attackers to execute arbitrary commands. OpenVAS/Nessus entries also describe unauthenticated...
CVE-2001-0958
CVE-2001-0958 affects Trend Micro InterScan eManager for NT Ver.3.51 (English) and NT Ver.3.51J. The vulnerability is a remotely exploitable buffer overflow in the eManager CGI interface, caused by long arguments to multiple DLLs (register.dll, ContentFilter.dll, SFNofitication.dll, TOP10.dll, Sp...
CVE-2007-0851
CVE-2007-0851 describes a buffer overflow in Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, exploitable when processing UPX-packed executables (as used in CCC Cleaner). The CCC Cleaner component is affected when the UPX-packed file is scanned, enabling arbitrary code ...
CVE-2002-2394
InterScan VirusWall 3.6 for Linux and 3.52 for Windows is affected by a vulnerability that allows remote attackers to bypass antivirus protection and potentially execute arbitrary code through HTTP/1.1 chunked transfer encoding. Affected components: VirusWall on Linux (3.6) and Windows (3.52). Ro...
CVE-1999-1533
The CVE-1999-1533 issue affects the Eicon Technology Diva LAN ISDN modem. A remote attacker can cause a denial-of-service (hang/crash) by sending a long password to the login.htm HTTP page, likely due to a buffer overflow in the login handling. Exploitation is remote via the login page parameter,...
CVE-2000-1106
Trend Micro InterScan VirusWall creates an Intscan share to the InterScan directory granting Full Control to the Everyone group, enabling attackers to modify VirusWall programs by altering permissions. The shared-access vulnerability is described in CVE-2000-1106 with a CVSS v2 base score of 4.6 ...
CVE-2001-0791
Trend Micro InterScan VirusWall for Windows NT is vulnerable via CGI programs that handle configuration and do not restrict access. Remote attackers could modify configuration by directly invoking these CGI scripts. Root cause is lack of access controls on certain CGI endpoints. Affected product/...
CVE-2001-1574
CVE-2001-1574 affects Trend Micro InterScan VirusWall 3.5.1 and involves a buffer overflow in two components, HttpSaveCVP.dll and HttpSaveCSP.dll. The flaw can allow remote attackers to execute arbitrary code. The available documents identify the vulnerable files and the impact but do not provide...
CVE-2005-0533
CVE-2005-0533: Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI prior to 7.510, used across multiple Trend Micro products. An overly long ARJ header file name can overrun a buffer in the ARJ parsing path, enabling remote code execution when a crafted ARJ archive is scanned. Affec...
CVE-1999-0378
InterScan VirusWall for Solaris fails to scan files for viruses when a single HTTP request includes two GET commands (CVE-1999-0378). This vulnerability is described consistently across Red Hat, NVD, CVE listings, and EUVD records. Affected product: InterScan VirusWall for Solaris. Root cause: th...
CVE-2001-0679
CVE-2001-0679 describes a buffer overflow in InterScan VirusWall 3.23 and 3.3 . A remote attacker can trigger arbitrary code execution by sending a long HELO command to the server. The connected records confirm the vulnerable component and the nature of the flaw, but do not provide versions beyon...
CVE-2001-1573
CVE-2001-1573 describes a buffer overflow in smtpscan.dll used by Trend Micro InterScan VirusWall 3.51 for Windows NT. The root cause is an overflow triggered by a certain configuration parameter, allowing remote attackers to execute arbitrary code. Documents consistently cite the affected compon...
CVE-1999-1529
CVE-1999-1529 affects Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, with a buffer overflow in the HELO command. Affects the SMTP gateway component responsible for handling HELO input; root cause is a buffer overflow, leading to potential remote impact. Public connected details des...
CVE-2000-0033
CVE-2000-0033 affects InterScan VirusWall SMTP scanner; vulnerability arises from improper handling of messages with malformed attachments. CVSS v2 base score 5.0 (MEDIUM) with no confidentiality/availability impact and partial integrity impact. No remediation details are provided in the documents.
CVE-2002-2395
CVE-2002-2395 affects InterScan VirusWall 3.52 for Windows. The vulnerability allows remote attackers to bypass virus protection and potentially execute arbitrary code through HTTP/1.1 gzip content encoding. Multiple sources (Red Hat, CVE lists, NVD) reiterate the impact, with no details on explo...
CVE-2001-0133
CVE-2001-0133 affects Interscan VirusWall 3.6.x and earlier. The web administration interface reportedly does not use encryption, enabling remote attackers to obtain the administrator password by sniffing credentials sent during login or via setpasswd.cgi and other HTTP GET requests that transmit...
CVE-2001-0132
Interscan VirusWall 3.6.x and earlier is affected by a local‑privilege issue in the uninstall process: it follows symbolic links, enabling local users to overwrite arbitrary files via a symlink attack. The vulnerability stems from the uninstall routine handling of symlinks, and the available refe...
CVE-2002-1121
CVE-2002-1121 describes a vulnerability where SMTP content filters fail to detect fragmented emails (RFC 2046 message/partial), allowing bypass of virus scanning. Affected products include GFI MailSecurity for Exchange/SMTP (pre-7.2), InterScan VirusWall (pre-3.52 build 1494), and the default MIM...
CVE-2000-0428
CVE-2000-0428 : Buffer overflow in the SMTP gateway of InterScan Virus Wall versions 3.32 and earlier allows remote command execution via a long filename in a uuencoded attachment. Impact is consistent with a HIGH severity (CVSS 2.0: AV:N/AC:L/Au:N/C:C/I:C/A:C). No remediation details are provide...
CVE-2001-0678
CVE-2001-0678 describes a buffer overflow in reggo.dll used by Trend Micro InterScan VirusWall prior to 3.51 build 1349 for Windows NT 3.5 and InterScan WebManager 1.2. The underlying issue is a buffer overflow in reggo.dll that could allow a local attacker to execute arbitrary code. The provided...
CVE-2002-0440
CVE-2002-0440 affects Trend Micro InterScan VirusWall HTTP proxy 3.6. The issue arises when the product is configured with the Skip scanning if Content-length equals 0 option enabled: a malicious HTTP server can bypass content scanning by sending a Content-length header of 0, which many HTTP cl...
CVE-2002-0637
InterScan VirusWall 3.52 build 1462 is affected by CVE-2002-0637. The vulnerability arises from email headers that violate RFC syntax via space gap patterns (examples include Content-Type :", Content-Transfer-Encoding :, missing space before a boundary, and boundary= ), which an attacker can expl...