Trend Micro updates to fix Scan Engine vulnerability

By

Trend Micro has confirmed a vulnerability in its Scan Engine application that could be exploited by malicious users to take control of an affected system.


An attacker could use a corrupted UPX (Ultimate Packer for Executables) file to cause a buffer overflow via the flaw. Trend Micro has released an update that fixes the vulnerability.

Successful exploitation can cause a DoS attack or allow an attacker to assume remote control of an affected system, according to a Trend Micro advisory.

The flaw exists in all Trend Micro products and versions using the Scan Engine and Pattern File, according to the company.

Secunia said in an alert updated today that the flaw is "highly critical," which means it can be exploited from a remote location.

Click here to email Online Editor Frank Washkuch Jr.
Got a news tip for our journalists? Share it with us anonymously here.
Tags:

Most Read Articles

Melbourne dev finds gift card PINs can be brute-forced

Melbourne dev finds gift card PINs can be brute-forced

"Widespread data theft" hits Salesforce customers via third party

"Widespread data theft" hits Salesforce customers via third party

Zero-click Apple and WhatsApp bug combo used to drop gov spyware

Zero-click Apple and WhatsApp bug combo used to drop gov spyware

Western Sydney University targets file-sharing sites hosting stolen data

Western Sydney University targets file-sharing sites hosting stolen data

Log In

  |  Forgot your password?