CVE-2006-1380

Published: Mar 24, 2006Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

ISNTSmtp directory in Trend Micro InterScan Messaging Security Suite (IMSS) 5.5 build 1183 and possibly other versions before 5.7.0.1121, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying ISNTSysMonitor.exe.

Affected (1)

Products: Trendmicro: Interscan Messaging Security Suite

1 product

Interscan Messaging Security Suite

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Trendmicro Interscan Messaging Security Suite	Version 5.5

Related CWEs

References (8)

http://secunia.com/advisories/19022

Source: cve@mitre.org

PatchVendor Advisory

http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english

Source: cve@mitre.org

URL Repurposed

http://www.vupen.com/english/advisories/2006/1041

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25415

Source: cve@mitre.org

http://secunia.com/advisories/19022

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english

Source: af854a3a-2127-422b-91ae-364da2661108

URL Repurposed

http://www.vupen.com/english/advisories/2006/1041

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/25415

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.