Vulnerability Description
The default installation of Trend Micro OfficeScan 3.0 through 3.54 and 5.x allows remote attackers to bypass authentication from cgiChkMasterPasswd.exe and gain access to the web management console via a direct request to cgiMasterPwd.exe.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trend Micro | Officescan | 3.0 |
| Trend Micro | Virus Buster | 3.52 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0020.html
- http://kb.trendmicro.com/solutions/solutionDetail.asp?solutionId=13353
- http://secunia.com/advisories/7881Vendor Advisory
- http://www.osvdb.org/6181
- http://www.securityfocus.com/bid/6616ExploitPatch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11059
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0020.html
- http://kb.trendmicro.com/solutions/solutionDetail.asp?solutionId=13353
- http://secunia.com/advisories/7881Vendor Advisory
- http://www.osvdb.org/6181
- http://www.securityfocus.com/bid/6616ExploitPatch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11059
FAQ
What is CVE-2003-1341?
CVE-2003-1341 is a vulnerability with a CVSS score of 7.5 (HIGH). The default installation of Trend Micro OfficeScan 3.0 through 3.54 and 5.x allows remote attackers to bypass authentication from cgiChkMasterPasswd.exe and gain access to the web management console v...
How severe is CVE-2003-1341?
CVE-2003-1341 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1341?
Check the references section above for vendor advisories and patch information. Affected products include: Trend Micro Officescan, Trend Micro Virus Buster.