CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2015-3326
https://notcve.org/view.php?id=CVE-2015-3326
14 May 2015 — Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 before Hot Fix Build 3318 and 11.0 before Hot Fix Build 4180 creates session IDs for the web console using a random number generator with predictable values, which makes it easier for remote attackers to bypass authentication via a brute force attack. Trend Micro ScanMail for Microsoft Exchange (SMEX) 10.2 anterior a Hot Fix Build 3318 y 11.0 anterior a Hot Fix Build 4180 crea identificadores de sesión para la consola web utilizando un generador de núm... • http://blog.malerisch.net/2016/05/trendmicro-smex-session-predictable-cve-2015-3326.html •
CVSS: 9.8EPSS: 31%CPEs: 118EXPL: 0CVE-2007-0851
https://notcve.org/view.php?id=CVE-2007-0851
08 Feb 2007 — Buffer overflow in the Trend Micro Scan Engine 8.000 and 8.300 before virus pattern file 4.245.00, as used in other products such as Cyber Clean Center (CCC) Cleaner, allows remote attackers to execute arbitrary code via a malformed UPX compressed executable. Un desbordamiento de búfer en Trend Micro Scan Engine versiones 8.000 y 8.300 anteriores al archivo de patrones de virus versión 4.245.00, tal y como es usado en otros productos como Cyber Clean Center (CCC) Cleaner, permite a atacantes remotos ejecuta... • http://esupport.trendmicro.com/support/viewxml.do?ContentID=EN-1034289 •
CVSS: 8.4EPSS: 7%CPEs: 78EXPL: 0CVE-2005-0533
https://notcve.org/view.php?id=CVE-2005-0533
24 Feb 2005 — Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple Trend Micro products, allows remote attackers to execute arbitrary code via a crafted ARJ file with long header file names that modify pointers within a structure. • http://secunia.com/advisories/14396 •
CVSS: 7.5EPSS: 3%CPEs: 2EXPL: 1CVE-2004-1003 – Trend Micro ScanMail for Domino 2.51/2.6 - Remote File Disclosure
https://notcve.org/view.php?id=CVE-2004-1003
04 Nov 2004 — Trend ScanMail allows remote attackers to obtain potentially sensitive information or disable the anti-virus capability via the smency.nsf file. • https://www.exploit-db.com/exploits/24725 •
CVSS: 9.8EPSS: 2%CPEs: 2EXPL: 2CVE-2003-1343 – Trend Micro ScanMail For Exchange 3.8 - Authentication Bypass
https://notcve.org/view.php?id=CVE-2003-1343
31 Dec 2003 — Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door account in smg_Smxcfg30.exe, which allows remote attackers to gain access to the web management interface via the vcc parameter, possibly "3560121183d3". • https://www.exploit-db.com/exploits/22174 • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2001-0586
https://notcve.org/view.php?id=CVE-2001-0586
22 Aug 2001 — TrendMicro ScanMail for Exchange 3.5 Evaluation allows a local attacker to recover the administrative credentials for ScanMail via a combination of unprotected registry keys and weakly encrypted passwords. • http://archives.neohapsis.com/archives/ntbugtraq/2001-q1/0049.html •