Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Trend Micro Personal Firewall service (aka TmPfw.exe) in Trend Micro Network Security Component (NSC) modules, as used in Trend Micro OfficeScan 8.0 SP1 Patch 1 and Internet Security 2007 and 2008 17.0.1224, relies on client-side password protection implemented in the configuration GUI, which allows local users to bypass intended access restrictions and change firewall settings by using a modified client to send crafted packets.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Internet Security产品 安全组件防火墙 安全绕过漏洞
Vulnerability Description
Trend Micro病毒扫描引擎为桌面、服务器和网关提供杀毒功能。 Trend Micro Internet Security包含一个用于配置防火墙的管理接口。为了防范用户非授权更改,对这个接口启用了口令限制。但Trend Micro的个人防火墙服务(TmPfw.exe)没有实施这个口令检查,如果远程攻击者向40000/TCP端口发送特制报文就可以非授权修改防火墙设置。
CVSS Information
N/A
Vulnerability Type
N/A