Vulnerability Details : CVE-2003-1341
The default installation of Trend Micro OfficeScan 3.0 through 3.54 and 5.x allows remote attackers to bypass authentication from cgiChkMasterPasswd.exe and gain access to the web management console via a direct request to cgiMasterPwd.exe.
Exploit prediction scoring system (EPSS) score for CVE-2003-1341
Probability of exploitation activity in the next 30 days: 10.47%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 94 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2003-1341
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
[email protected] |
CWE ids for CVE-2003-1341
-
Assigned by: [email protected] (Primary)
References for CVE-2003-1341
Products affected by CVE-2003-1341
- cpe:2.3:a:trend_micro:officescan:3.1.1:*:corporate_for_windows_nt_server:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.13:*:corporate_for_windows_nt_server:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.5:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.0:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.0:*:corporate_for_windows_nt_server:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.5:*:corporate_for_windows_nt_server:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.54:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.11:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.11:*:corporate_for_windows_nt_server:*:*:*:*:*
- cpe:2.3:a:trend_micro:officescan:3.13:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:virus_buster:3.52:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:virus_buster:3.53:*:corporate:*:*:*:*:*
- cpe:2.3:a:trend_micro:virus_buster:3.54:*:corporate:*:*:*:*:*