Trend Micro : Security Vulnerabilities, CVEs, Published In December 2003
Trend Micro Virus Control System (TVCS) Log Collector allows remote attackers to obtain usernames, encrypted passwords, and other sensitive information via a URL request for getservers.exe with the action parameter set to "selects1", which returns log files.
Max CVSS
5.0
EPSS Score
0.61%
Published
2003-12-31
Updated
2017-07-29
Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door account in smg_Smxcfg30.exe, which allows remote attackers to gain access to the web management interface via the vcc parameter, possibly "3560121183d3".
Max CVSS
7.5
EPSS Score
3.71%
Published
2003-12-31
Updated
2017-07-29
Trend Micro Virus Control System (TVCS) 1.8 running with IIS allows remote attackers to cause a denial of service (memory consumption) in IIS via multiple URL requests for ActiveSupport.exe.
Max CVSS
5.0
EPSS Score
13.46%
Published
2003-12-31
Updated
2020-11-23
The default installation of Trend Micro OfficeScan 3.0 through 3.54 and 5.x allows remote attackers to bypass authentication from cgiChkMasterPasswd.exe and gain access to the web management console via a direct request to cgiMasterPwd.exe.
Max CVSS
7.5
EPSS Score
10.47%
Published
2003-12-31
Updated
2017-07-29
4 vulnerabilities found