Past News - CIOInsight
Home arrow Past News arrow Highly-Critical Flaw Discovered in Trend Micro Products
RECENT NEWS



CIO STRATEGY
The Perfect IT Book for the Business?

Parkinson needs a book that explains IT to the business. Got any suggestions?    

  Past News


Highly-Critical Flaw Discovered in Trend Micro Products



By Don E. Sears
2007-02-08
Article Views: 1659
Article Rating:starstarstarstarstar / 0


Anti-virus software maker Trend Micro is the latest security vendor to have potential malware problems on its hands with reports of buffer overflow vulnerabilites in its products.

Rate This Article:
Poor Best
Add This Article To:

A dangerous buffer-overflow flaw in Trend Micro anti-virus software products was reported by Trend Micro and confirmed by security researchers at iDefense Labs.

Researchers at Secunia have also posted an advisory on this vulnerability and have deemed this to be highly critical.

This flaw can be exploited in both Windows and Linux systems, and could be used to gain access to machines, cause DOS (denial of service) activity and allow attackers total control of affected systems.

Trend Micro responded to the vulnerability by pushing out a patch that a company spokesperson says fixes the issue.

"We have seen no cases in the wild, but Trend Micro moved quickly on this because, like others, we understand the highly critical nature of this issue," a company representative told eWEEK.

The vulnerability targets all scan engine and pattern file technology in Trend Micro products due to an error within UPX (ultimate packer for executables) compressed executables. This error can be exploited to cause buffer overflow processes when scanning a uniquely designed UPX file.

In Windows, the scan engine runs in kernel context. Under Linux, the scan engine runs as a daemon with superuser privileges, hence the ability to have complete system control.

iDefense reports that the following configurations are vulnerable:

  • Trend Micro's PC-Cillin Internet Security 2007
  • VsapiNI.sys (scan engine) version 3.320.0.1003
  • ServerProtect for Linux v2.5 on RHEL 4.x
  • vsapiapp version 8.310

    Trend Micro said that the majority of its customers use automatic updates, and therefore received the patch that fixes the problem within 24 hours.

    Trend Micro targets SMBs with security offering. Click here to read more.

    "Trend Micro is including the fix in VSAPI 8.5, which is expected to launch in Q2 2007. In the meantime, Trend Micro has created a pattern update (4.245.0) to detect this vulnerability. The pattern update was made available on February 5, 2007," said the company spokesperson.

    For those customers that do not use automatic updates, Trend Micro highly recommends that its customers update to Virus Pattern File 4.245.00 or higher.

    Representatives from iDefense and Secunia could not be reached for comment at the time of this reporting.

    Check out eWEEK.com's Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK's Security Watch blog.

    test





     
     
    >>> More Past News Articles          >>> More By Don E. Sears
     



    • FEATURED SPONSORED VIDEOS
    FEATURED SPONSORED ARTICLES

    Erasable E-Paper Saves Trees, Cuts Costs

    Why Smart Companies Should Adopt the Lessons of Gaming

    Interest in Mobile WiFi Hotspots Fuels New Solutions

    A Closer Look at Public Cloud Security

    View More Articles

      Brought to You By
    Click Here

    Related Content

    Articles Labs/How-To Multimedia

    EDITORS' PICKS
    LATEST STORIES
    - Small DDoS Attacks Just as Damaging as Massi...
    - IBM, Samsung to Show Next-Gen Chip Tech at M...
    - VMware Issues vCloud Integration Manager
    - Apple iPad 3 Unveiling Set for March: Report
    - Certifications Key to Tech Contracting Jobs:...


    Advertisement
    FEEDBACK
    Ziff Davis Enterprise RSS Feeds
    XML Get CIO Insight news delivered to your desktop with RSS.

    Sponsored Links
  • Get up and running in as quickly as 30 days with BI. Learn how today.

  • FREE Securing Smartphones & Tablets for Dummies Book from Sophos
  • 77% of the Fortune 500 Manage Content Securely with Box.
  • Leverage your virtual computing environment with Dell.
  • Build an IT Infrastructure That Delivers the Future
  • 5 New Technologies That Will Change Enterprise ITAdvertisement
    		•

    CIO Insight:  

    Issue Index | Contact Us | About | Advertise | Magazine Customer Service | Site Map

    Quick Links:  

    Enterprise Mobility Zone | Management Case Studies | Loyalty Programs | Term Sheet | Strategy Maps | Organizational Behavior | Net Present Value Calculator | Link to Us

    eWEEK Quick LInks

    Security:
    Network Security
    Entprise Networking
    Infrastructure Security
    How To: Data
    IT Security News
    Cheap Hack Blog
    Security Watch Blog
    Storage:
    Storage
    Cloud Storage
    Storage Virtualization
    Network Access Storage
    Storage Reviews
    Data Storage News
    How To: Storage
    Storage Station Blog
    Computing:
    Apple OSX
    Linux Systems
    Windows Vista
    Managed Print Services
    Cloud Computing
    PC Reviews
    Microsoft Watch Blog
    Apple Watch Blog
    Google Watch Blog
    Communications:
    VoIP Solutions
    Wireless Technology
    Messaging Software
    Web Services
    Mobile Applications
    Wireless News
    Mobile Reviews
    Apps & Development:
    Application Development
    SAAS
    Search Engines
    Database Software
    Web 2.0
    IT Project Management
    Emerging Tech Blog
    CIO Insight Blogs
    CIOs

    Vertical Markets:
    Federal Government IT
    Health Care IT
    Finance IT
    Mid-Market
    Channel Partners
    Careers Blog
    Value Added Resellers
    More eWeek Links:
    Green Computing
    Tech Knowledge Center
    Tech Newsletters
    Tech RSS Feeds
    White Papers
    Tech Podcasts
    Tech Videos
    Magazine Subscriptions
    Enterprise Websites:
    ZDE Home
    eWeek
    Baseline
    Channel Insider
    CIO Insight
    eSeminars
    eWeek Mid-Market
    Publish Online
    Web Buyers Guide
    Developer Websites:
    Dev Shed
    DeveloperShed
    ASP Free
    MS DevSource
    SEO Chat
    Codewalkers
    Tutorialized
    Scripts.com
    Dev Mechanic
    Dev Articles
    Web Hosters
    Dev Hardware
    Technology Websites:
    Device Forge
    Desktop Linux
    Linux Devices
    Windows for Devices
    TechDirect
    iGrep Search Engine
    PDF Zone
    Linux Watch

    Use of this site is governed by our Terms of Use and Privacy Policy
    Copyright ©1996-2012 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.
    eWeek is your best source for the latest Technology News.
    ZDE Cluster 9