A buffer overflow vulnerability in the UPX parser of TrendMicro Antivirus seems to affect the product pretty much in all its incarnations. See esupport.trendmicro.com/support/viewxml.do According to this, applying the latest pattern is sufficient to plug the problem until a new version of the engine (8.5) gets released. Chances are though that the trend (no pun intended) will continue that AV products themselves contain the same type of vulnerabilities they claim to shield other software against. Quis custodiet ipsos custodes ? |
Daniel 385 Posts ISC Handler Feb 8th 2007 |
Thread locked Subscribe |
Feb 8th 2007 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!