| VID |
29010 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The CGIs of the interscan viruswall management console allow malicious users to make configuration changes.
Trend Micro InterScan VirusWall for Windows NT is a virus protection software for incoming and outgoing e-mail, HTTP, FTP traffics. This software has a capability that allows changing of the configuration by using a web browser. The interface is handled via CGI programs that are placed under the IIS's cgi-bin directory. Unfortunately, the CGI programs in version 3.5.1 and earlier allow for a malicious attackers to make modifications to the software's configuration remotely without any authorization.
* References:
http://www.securityfocus.com/bid/2808
http://xforce.iss.net/xforce/xfdb/6641 |
| Recommendation |
Trend Micro support team responded that this problem would be fixed in version 5.0. They also reported that a patch would be released on July 2001. Until a patch is released, the best solution is to install the VirusWall software inside a protected network (i.e. use firewall or use access control features of the web server). Patches of Trend Micro is available from http://www.antivirus.com/download/patches/ |
| Related URL |
CVE-2001-0791 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
