SNS Advisory No.38 Trend Micro Virus Buster (Ver.3.5x) Remote File Disclosure With IUSER Privilege Vulnerability
Problem first discovered: Wed, 18 Jul 2001 Published: Mon, 20 Aug 2001
Trend Micro Virus Buster (a.k.a Officescan Corporate Edition) contains a vulnerability which allows attacker to read arbitrary files with IUSER privilege.
Trend Micro Virus Buster is antivirus software for the enterprise use. It provides central virus reporting, automatic virus pattern updates, and Web-based remote management console. A vulnerability lies in cgiWebupdate.exe, which is one of the CGI programs which used for remote management. This problem can allow remote users to read arbitrary files with IUSER privilege. "Virus Buster Corporate Edition" is provided only as Japanese version which is a.k.a "Officescan Corporate Edition" as English version. We're still working with Trend Micro about this problem in "Officescan Corporate Edition". As soon as possible, we will publish the issue.
Trend Micro Virus Buster Corporate Edition Version 3.52 Trend Micro Virus Buster Corporate Edition Version 3.53 Trend Micro Virus Buster Corporate Edition Version 3.54
Windows 2000 Server [Japanese]
The patch is available from the following site:
Nobuo Miwa (LAC / firstname.lastname@example.org)
All information in these advisories are subject to change without any advanced notices neither mutual consensus, and each of them is released as it is. LAC Co., Ltd. is not responsible for any risks of occurrences caused by applying those information.
Archive of this advisory(in preparation now): http://www.lac.co.jp/security/english/snsadv_e/38_e.html
Secure Net Service(SNS) Security Advisory <email@example.com> Computer Security Laboratory, LAC http://www.lac.co.jp/security/