• CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
A buffer overflow in reggo.dll file used by Trend Micro InterScan VirusWall prior to 3.51 build 1349 for Windows NT 3.5 and InterScan WebManager 1.2 allows a local attacker to execute arbitrary code.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Assigning CNA
MITRE Corporation
Date Record Created
20010829 Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Proposed (20010829)
Votes (Legacy)
ACCEPT(5) Baker, Cole, Frech, Stracener, Ziese
NOOP(2) Foat, Wall
RECAST(1) Christey
Comments (Legacy)
 Christey> CD:SF-LOC may suggest merging with CVE-2001-0761
 CHANGE> [Christey changed vote from NOOP to REVIEWING]
 Christey> CONFIRM:
   Also say it's the Serial Number field, as stated in
   ISVWNTBufferOverflowPatch.txt of the zip file.
   Since there is a separate patch for CVE-2001-0761 (though no
   build number), there is enough evidence to keep these
   2 candidates separate.
 CHANGE> [Christey changed vote from REVIEWING to RECAST]
 Christey> CONFIRM:
   This patch fixes a number of overflows in various DLL's,
   including RegGo.dll.  See Readme_ISNT_BufferOverflowPatchFiles.txt.
   By CD:SF-LOC, the same type of issue appears in the same
   versions, so CVE-2001-0678 must be RECAST to include the following
   *other* issues in 1512:
   (1) FtpSaveCSP.dll, (2) FtpSaveCVP.dll, (3)
   HttpSaveCSP.dll, (4) HttpSaveCVP.dll, (5) RegGo.dll, (6) ViewLog.dll,
   (7) ftpSaveCVP.dll, (8) patupd.dll, (9) smtpscan.dll, or (10)
   BUGTRAQ:20010612 [SNS Advisory No.31] Trend Micro InterScan VirusWall for Windows NT 3.51 FtpSaveC*P.dll Buffer Overflow Vulnerability

Proposed (Legacy)
This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.