The Last HOPE
-->
         
         
Email us! Subscribe to Liquidmatrix!

More Trend Fun: DoS This Time

There was a new vulnerability in Trend Micro’s suite of products announced yesterday. This is a remote UPX problem that can result in a denial of service.

From Secunia:

Description:
A vulnerability has been reported in Trend Micro products, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to a divide-by-zero error within the anti-virus engine when processing UPX compressed executables. This can be exploited to e.g. crash the system (Windows-based system) or application (library-based engine) when scanning a specially crafted UPX compressed executable file.

The vulnerability reportedly affects all Trend Micro products that use Scan Engine version 8.0 and above with Pattern File technology.

Solution:
Update the virus pattern file to OPR 4.335.00 or higher.

Article Link

Tags: , , ,

Tag It: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Slashdot
  • Technorati
  • SphereIt
  • StumbleUpon
  • Fark
  • YahooMyWeb
  • Furl
  • Spurl
  • Ma.gnolia
  • NewsVine
Related Articles:

  • Trend Micro UPX Processing Buffer Overflow
  • Trend Scoops Up Encryption Vendor
  • Trend Micro CEO in SEC probe
  • Spammers Use Stripper To Crack CAPTCHAs
  • Cisco IP Phone SIP INVITE DoS
  • Leave a Comment