10
CVE-2007-3455
- EPSS 3%
- Veröffentlicht 27.06.2007 00:30:00
- Zuletzt bearbeitet 16.06.2026 22:42:04
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
cgiChkMasterPwd.exe before 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to bypass the password requirement and gain access to the Management Console via an empty hash and empty encrypted password string, related to "stored decrypted user logon information."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Trend Micro ≫ Officescan Version8.0 Editioncorporate
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3% | 0.856 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/25778
http://www.securityfocus.com/bid/24641
http://www.trendmicro.com/ftp/documentation/readme/osce_80_win_en_securitypatch_b1042_readme.txt
http://www.vupen.com/english/advisories/2007/2330
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=558
http://osvdb.org/36628
http://www.securityfocus.com/bid/24935
http://www.securitytracker.com/id?1018320
https://exchange.xforce.ibmcloud.com/vulnerabilities/35052