Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain base64 encoded usernames and passwords.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Interscan VirusWall Weak Admin密码保护漏洞
Vulnerability Description
Interscan VirusWall 3.6.x以及之前版本web管理界面不能使用加密。远程攻击者借助包含Base64编码用户名和密码的setpasswd.cgi程序或者其它HTTP GET请求获得管理密码来嗅探管理员密码。
CVSS Information
N/A
Vulnerability Type
N/A