|
|
Info |
Last Modified |
| 6 months ago |
|
|
|
|
Description |
TrendMicro OfficeScan Corporate Edition (OSCE) contains a flaw that may allow a malicious local user to alter or disable anti-virus protection, due to insufficient permissions assigned the application's installation directory, files, and registry keys upon installation.
|
|
Classification |
Location:
Local Access Required
Attack Type:
Misconfiguration
Impact:
Loss of Integrity,
Loss of Availability
Exploit:
Exploit Available
Disclosure:
OSVDB Verified
|
|
Technical |
It is important to note a virus, worm, or trojan running under the credentials of the logged on user could also leverage these weak permissions to disable or modify the local anti-virus service as part of its payload.
|
|
Solution |
Currently, there are no known upgrades, patches, or workarounds available to completely correct this issue. It is reported the vendor has supplied a patch to resellers, "OSCE_Hotfix_RegistryTool.zip," which modifies the registry permissions, but the file permission issues remain unaddressed by the vendor.
|
|
Products |
|
OfficeScan Corporate Edition
 |
5.58 |
|
|
|
|
Credit |
- Matt - matt_will_fix_it
 hotmail.com -
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
