Vulnerability Description
Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trend Micro | Officescan | corporate_3.5 |
| Trend Micro | Virus Buster | corporate_3.52 |
References
- http://www.iss.net/security_center/static/7014.phpPatchVendor Advisory
- http://www.securityfocus.com/archive/1/209375PatchVendor Advisory
- http://www.securityfocus.com/archive/1/210087
- http://www.securityfocus.com/bid/3216PatchVendor Advisory
- http://www.iss.net/security_center/static/7014.phpPatchVendor Advisory
- http://www.securityfocus.com/archive/1/209375PatchVendor Advisory
- http://www.securityfocus.com/archive/1/210087
- http://www.securityfocus.com/bid/3216PatchVendor Advisory
FAQ
What is CVE-2001-1150?
CVE-2001-1150 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Vulnerability in cgiWebupdate.exe in Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.5.2 through 3.5.4 allows remote attackers to read arbitrary files.
How severe is CVE-2001-1150?
CVE-2001-1150 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1150?
Check the references section above for vendor advisories and patch information. Affected products include: Trend Micro Officescan, Trend Micro Virus Buster.