漏洞类别:Web server漏洞等级: 
漏洞信息
Interscan VirusWall is a virus scanner distributed and maintained by Trend Micro. It is designed to scan for virus occurrences in both incoming and outgoing traffic via SMTP, FTP, and HTTP at the gateway of the network.
The method used to remotely authenticate the administrator leaves the administrator's username and password encoded in an easily converted base-64 format. This could allow a malicious user with sufficient skills and access to the network to obtain and decode the administrator password. This could potentially undermine the system's anti-virus and anti-trojan measures, further jeopardizing the security of the affected host. In addition, the administrator's password change script (setpasswd.cgi) receives its information in cleartext via the HTTP protocol.
漏洞危害
This method of transport may allow a malicious user to gain administrative access to the InterScan VirusWall configuration, and to make changes that may leave the system open to infection and/or further compromises.
解决方案
Upgrade to the latest version of InterScan VirusWall, which is available for download from Trend Micro's Download site. Please note, however, that it is not known whether or not the latest version fixed this issue.
As a workaround, install InterScan VirusWall on a stand-alone computer, and do not use the Web-based configuration tools.
0day
文章评论