Lucene search
MitreCVE-2002-0440HistoryJul 26, 2002 - 4:00 a.m.
CVE-2002-0440
2002-07-2604:00:00
mitre
web.nvd.nist.gov
20
cve-2002-0440
trend micro
interscan viruswall
http proxy
security flaw
bypass
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.9
Confidence
Low
EPSS
0.005
Percentile
77.5%
Trend Micro InterScan VirusWall HTTP proxy 3.6 with the “Skip scanning if Content-length equals 0” option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients.
Affected configurations
Node
trend_microinterscan_viruswallMatch3.6
ORtrend_microinterscan_viruswallMatch3.51
| Vendor | Product | Version | CPE |
|---|---|---|---|
| trend_micro | interscan_viruswall | 3.6 | cpe:2.3:a:trend_micro:interscan_viruswall:3.6:*:*:*:*:*:*:* |
| trend_micro | interscan_viruswall | 3.51 | cpe:2.3:a:trend_micro:interscan_viruswall:3.51:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2002-0440
2002-06-11 04:00:00
exploitdb
exploitdb
Trend Micro Interscan VirusWall 3.5/3.6 - Content-Length Scan Bypass
2002-03-11 00:00:00
nvd
nvd
CVE-2002-0440
2002-07-26 04:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.9
Confidence
Low
EPSS
0.005
Percentile
77.5%
Related for CVE-2002-0440