Trend Micro Virus Control System 1.8 - Information Disclosure

Author: Rod Boron
type: remote
platform: windows
port: 
date_added: 2003-01-15  
date_updated: 2012-10-23  
verified: 1  
codes: CVE-2003-1344;OSVDB-6186  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22173.txt  

source: https://www.securityfocus.com/bid/6618/info

An information disclosure vulnerability has been reported for TVCS. Reportedly, it is possible for an attacker to access the log files generated by TVCS. The log files contain very sensitive information about the system, including user names and passwords.

Any information obtained in this manner may be used by an attacker to launch further destructive attacks against a system.

http://x.x.x.x/tvcs/getservers.exe?action=selects1