OK, I have had my head firmly in the clouds with RSA 2007 last week. I missed posting this alert from Secunia.

From Secunia:

A vulnerability has been reported in Trend Micro products, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.

The vulnerability is caused due to an error within the processing of UPX compressed executables. This can be exploited to cause a buffer overflow when scanning a specially crafted UPX compressed executable file.

Successful exploitation may allow execution of arbitrary code or cause the system to crash.

The vulnerability reportedly affects all Trend Micro products and versions that use the Scan Engine and Pattern File technology.

Article Link

[tags]Trend Micro, Buffer Overflow, UPX, Secunia[/tags]

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.