First published: Wed Aug 22 2001(Updated: )
TrendMicro ScanMail for Exchange 3.5 Evaluation allows a local attacker to recover the administrative credentials for ScanMail via a combination of unprotected registry keys and weakly encrypted passwords.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Trend Micro ScanMail Exchange | =3.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2001-0586 has a medium severity rating due to the potential for unauthorized access to administrative credentials.
To fix CVE-2001-0586, ensure that registry keys are adequately protected and avoid using weak encryption for sensitive passwords.
The potential impacts of CVE-2001-0586 include unauthorized access to administrative functions in Trend Micro ScanMail for Exchange.
Users of Trend Micro ScanMail for Exchange version 3.5 are affected by CVE-2001-0586.
There is no specific patch documented for CVE-2001-0586, but users should follow best security practices to mitigate the risk.