PT-2011-3058 · Trend Micro · Trend Micro Internet Security

Nobuhiro Tsuji

Published

2011-05-20

Updated

2011-05-24

CVE-2011-1327

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Trend Micro Internet Security versions 2009

Description The issue concerns the Keystroke Encryption feature, which fails to completely encrypt passwords. This allows local users to obtain sensitive information by using a keylogger.

Recommendations For version 2009, consider disabling the Keystroke Encryption feature until a proper fix is available to prevent potential exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310

Related Identifiers

CVE-2011-1327

Affected Products

Trend Micro Internet Security

PT-2011-3058 · Trend Micro · Trend Micro Internet Security

CVE-2011-1327

Weakness Enumeration

Related Identifiers

Affected Products

References · 5