CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 1CVE-2002-0637 – Trend Micro Interscan VirusWall for Windows NT 3.52 - Space Gap Scan Bypass
https://notcve.org/view.php?id=CVE-2002-0637
InterScan VirusWall 3.52 build 1462 allows remote attackers to bypass virus protection via e-mail messages with headers that violate RFC specifications by having (or missing) space characters in unexpected places (aka "space gap"), such as (1) Content-Type :", (2) "Content-Transfer-Encoding :", (3) no space before a boundary declaration, or (4) "boundary= ", which is processed by Outlook Express. Interscan VirusWall build 1462 permite a atacantes remotos evadir la protección mediante mensajes de correo con cabeceras que no cumplen la especificaciónes RFC por tener (o faltarle) caractéres de espacio en lugares inesperados (también conocido como "space gap"); como en: "Content-Type :" "Content-Transfer-Encoding :" Sin espacio antes de una declaración de límites, o "boundary= ", que es procesado por Outlook Express. • https://www.exploit-db.com/exploits/21625 http://www.iss.net/security_center/static/9464.php http://www.securiteam.com/securitynews/5KP000A7QE.html •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2002-0440 – Trend Micro Interscan VirusWall 3.5/3.6 - Content-Length Scan Bypass
https://notcve.org/view.php?id=CVE-2002-0440
Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients. • https://www.exploit-db.com/exploits/21339 http://seclists.org/lists/bugtraq/2002/Mar/0162.html http://www.inside-security.de/vwall_cl0.html http://www.iss.net/security_center/static/8425.php http://www.securityfocus.com/bid/4265 •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2001-1573
https://notcve.org/view.php?id=CVE-2001-1573
Buffer overflow in smtpscan.dll for Trend Micro InterScan VirusWall 3.51 for Windows NT has allows remote attackers to execute arbitrary code via a certain configuration parameter. • http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00407.html •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2001-1574
https://notcve.org/view.php?id=CVE-2001-1574
Buffer overflow in (1) HttpSaveCVP.dll and (2) HttpSaveCSP.dll in Trend Micro InterScan VirusWall 3.5.1 allows remote attackers to execute arbitrary code. • http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00408.html •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2001-1151
https://notcve.org/view.php?id=CVE-2001-1151
Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password. • http://www.securityfocus.com/archive/1/220666 http://www.trendmicro.co.jp/esolution/solutionDetail.asp?solutionID=318 https://exchange.xforce.ibmcloud.com/vulnerabilities/7286 •