Security flaw hits Trend Micro antivirus

By
Follow google news

Vulnerabilities could allow remote code execution.

Security flaw hits Trend Micro antivirus
Anti virus vendor Trend Micro is warning users against a potentially serious vulnerability that exists in more than 30 of its security applications.

If the vulnerability is exploited, the company said that an attacker could remotely install and execute code or cause a system crash resulting in the infamous Windows "blue screen of death."

The problem exists in the Trend Micro Scan Engine, a core component of the company's anti-virus applications. When the Scan Engine encounters a certain type of malformed .exe file, it triggers a denial of service (DoS) crash. The DoS can then either be used to remotely install and execute malware code.

Because the vulnerability allows attackers to remotely install and execute code on vulnerable systems, security company Secunia rated the vulnerability "highly critical," its second-highest severity rating.

Trend Micro has issued a fix for the vulnerability which users can get by updating to the latest virus pattern update. The company said that it will patch the flaw in its upcoming Scan Engine 8.5 update.


Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
antivirusflawhitsmicrosecuritytrend

Sponsored Whitepapers

Uncomplicate IT Service Delivery with AI Agents
Uncomplicate IT Service Delivery with AI Agents
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM

Events

Most Read Articles

Researchers find critical vulnerabilities in cloud-based password managers

Researchers find critical vulnerabilities in cloud-based password managers
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Victoria's whole-of-government CISO has left

Victoria's whole-of-government CISO has left
Woolworths splits infosec and physical security again

Woolworths splits infosec and physical security again
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?