Trend Micro OfficeScan Corporate Edition (aka Virus Buster) 3.53 allows remote attackers to access sensitive information from the hotdownload directory without authentication, such as the ofcscan.ini configuration file, which contains a weakly encrypted password.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Officescan | Trend_micro | corporate_3.53 (including) | corporate_3.53 (including) |
| Virus_buster | Trend_micro | corporate_3.53 (including) | corporate_3.53 (including) |