Unrated severityNVD Advisory· Published Mar 12, 2001· Updated Apr 16, 2026

CVE-2001-0133

Description

The web administration interface for Interscan VirusWall 3.6.x and earlier does not use encryption, which could allow remote attackers to obtain the administrator password to sniff the administrator password via the setpasswd.cgi program or other HTTP GET requests that contain base64 encoded usernames and passwords.

Affected products

Trend Micro/Interscan Viruswall2 versions
cpe:2.3:a:trend_micro:interscan_viruswall:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:trend_micro:interscan_viruswall:*:*:*:*:*:*:*:*range: <=3.6
- cpe:2.3:a:trend_micro:interscan_viruswall:3.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2001-01/0235.htmlnvdVendor Advisory
www.securityfocus.com/bid/2212nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000