CVE-2006-1381

Published: Mar 24, 2006Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Trend Micro OfficeScan 5.5, and probably other versions before 6.5, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying tmlisten.exe.

Affected (1)

Products: Trend Micro: Officescan

Trend Micro

1 product

Officescan

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Trend Micro Officescan	Version 5.5

References (8)

http://secunia.com/advisories/11576

Source: cve@mitre.org

Vendor Advisory

http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english

Source: cve@mitre.org

URL Repurposed

http://www.vupen.com/english/advisories/2006/1041

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25415

Source: cve@mitre.org

http://secunia.com/advisories/11576

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english

Source: af854a3a-2127-422b-91ae-364da2661108

URL Repurposed

http://www.vupen.com/english/advisories/2006/1041

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/25415

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.