NOW READ THIS
("Security Advisory")

Go Back

---

Submitted by: Bill Hickey
NCVA List Master

NRT-0049 Computer Security Software flaw:

Trend Micro (makers of PC-cillin products) is warning users of a serious security flaw in several of its products that could cause a vulnerable PC to crash or be hijacked. The flaw in its antivirus scan engine could be used to trigger a buffer overflow using a corrupted UPX file. For example, an outsider could send an email with the malicious file to a computer loaded with the affected antivirus software. Security companies such as Secunia have rated the flaw as "highly critical." Trend Micro said there are no exploits for the vulnerability circulating yet, but the flaw affects all of Trend Micro's products that use its scan engine and pattern file technology, including its PC-cillin line and certain versions of Client Server Messaging Security for SMB. Trend Micro has issued a signature update that patches the UPX parsing algorithm and includes generic detection for malicious UPX files. A permanent patch will be applied to the scanning engine when it upgrades to version 8.5 in the future. The update can be retrieved manually using the instructions posted on the Trend Web site, or automatically through the products' auto-updater. Trend Micro confirmed that all users with automatic updating enabled have received the patch.

(Computerworld 08FEB07)

Last Modified: Sunday, 18-Feb-2007 08:27:02 EST