| VID |
29009 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Trend Micro OfficeScan contains a virtual directory disclosure vulnerability.
Trend Micro OfficeScan Corporate Edition (Japanese version: Virus Buster Corporate Edition) is an antivirus software for enterprise use. This software provides real-time management, real-time configuration and updates pattern files on client machines from management console.
When this software is installed, several virtual directories are created in order to provide Web-based management console function. However, attackers will be able to access one of these directories, /officescan/hotdownload, without authentication. In addition, the file stored in this directory, ofcscan.ini, is the configuration file used by OfficeScan Corporate Edition.
If this vulnerability is exploited, an attacker will be able to gain access to the configuration information from this file. Moreover, although this file stores an encrypted password, it is possible to decrypt it easily.
* Vulnerable systems:
Trend Micro OfficeScan Corporate Edition version 3.53
Trend Micro Virus Buster Corporate Edition version 3.53
* References:
http://online.securityfocus.com/bid/3438
http://www.securiteam.com/windowsntfocus/6G00R0U2UK.html
http://www.antivirus.com/products/osce/ |
| Recommendation |
Appy the appropriate patch for your system, as listed in the following URL:
http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=3182 |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
