Trend Micro Warns of Scan Engine Vulnerability -- Redmond Channel Partner

Trend Micro Warns of Scan Engine Vulnerability

By Stephen Swoyer
February 13, 2007

Anti-virus (AV) specialist Trend Micro Inc. last week warned of a flaw in its AV scanning engine that could result in denial-of-service (DoS) or system takeover.

The flaw affects a variety of products, including Trend Micro's InterScan Messaging Security Suite, InterScan VirusWall, InterScan Web Security Suite, OfficeScan and ServerProtect offerings. Trend Micro's consumer offerings -- such as Trend Micro Antivirus and PC-cillin -- are also affected, officials said.

The vulnerability stems from a corrupted UPX file in Trend Micro's scan engine. An attacker who successfully exploits it can cause a buffer overflow and trigger a Windows Blue Screen of Death (BSOD) or -- more dangerous still -- potentially execute arbitrary code on the compromised system. In the latter scenario, officials concede, an attacker could take control of the system.

The vulnerability was first reported by iDefense Vulnerability Labs, a security researcher based in Sterling, Virginia.

According to iDefense researchers, the flaw can be exploited by means of common protocols, such as SMTP, HTTP or FTP; nor must an attacker successfully authenticate to be able to exploit the vulnerability, iDefense says.

The worst-case scenario -- remote execution of arbitrary code -- stems from the fact that (in Windows environments) the Trend Micro scan engine runs in the kernel context. Under Linux, the engine runes as a daemon with superuser privileges, iDefense researchers say. The upshot, in any case, is severe: an attacker can take complete control of a compromised system, assuming she's first able to successfully execute her malicious payload.

Trend Micro advises customers to update their virus pattern files to 4.245.00. It also plans to incorporate a fix into its upcoming Scan Engine version 8.5 release. In addition, Trend Micro officials say, the AV specialist also distributes a fix for the flaw via its automatic update feature.

About the Author

Stephen Swoyer is a Nashville, TN-based freelance journalist who writes about technology.

Free Webcast! Learn about Password Management Best Practices

Featured

Nutanix Partner Central Rolls Out To Boost Channel Engagement

Nutanix on Wednesday launched a new platform, Partner Central, to give its channel partners a unified digital workspace for managing sales, tracking incentives and collaborating more effectively.
Veeam Releases Data Cloud for MSPs, Targets SaaS Protection at Scale

Veeam is expanding its footprint in the managed services arena with the global launch of Veeam Data Cloud for Managed Service Providers (MSPs).
The Era of Windows 10 (and Some Office and Skype Editions) Officially Comes to an End

Microsoft has formally withdrawn support for Windows 10 as of Oct. 14, 2025, bringing the curtain down on one of its most widely adopted operating systems.
Microsoft Builds AI Agent To Help Its Own Employees Navigate Licensing

Microsoft has rolled out an internal AI agent dubbed "Licensing Navigator" to help its own users answer complex licensing questions, promising to improve response times by nearly 90 percent.

RCP Update

Email Address*Country*

Please type the letters/numbers you see above.

Trend Micro Warns of Scan Engine Vulnerability

Featured

Nutanix Partner Central Rolls Out To Boost Channel Engagement

Veeam Releases Data Cloud for MSPs, Targets SaaS Protection at Scale

The Era of Windows 10 (and Some Office and Skype Editions) Officially Comes to an End

Microsoft Builds AI Agent To Help Its Own Employees Navigate Licensing

Nutanix Partner Central Rolls Out To Boost Channel Engagement

MIT Finds Only 1 in 20 AI Investments Translate into ROI

Microsoft To Standardize Online Services Pricing for Volume Licensing

Microsoft Appoints Althoff as New CEO for Commercial Business

Dynamics 365, Power Platform and Copilot Getting AI Boosts in Wave 2 Update

Nutanix Partner Central Rolls Out To Boost Channel Engagement

MIT Finds Only 1 in 20 AI Investments Translate into ROI

Microsoft To Standardize Online Services Pricing for Volume Licensing

Microsoft Appoints Althoff as New CEO for Commercial Business

Dynamics 365, Power Platform and Copilot Getting AI Boosts in Wave 2 Update

Partner Guides

Partner's Guide to the Windows Server 2008 Deadline

Partner's Guide to Office 365 Security Costs

Partner's Guide to UCaaS

Partner's Guide to Starter Workloads in Azure

Partner's Guide to Microsoft's Fiscal Year 2019

FREE WEBCASTS FROM OUR SPONSORS

Veeam Data Cloud for Microsoft 365

Coffee Talk | MSP Security Playbook: Threat Detection, Response and Beyond

Coffee Talk | Next-Gen Threat Management: A Unified Approach for MSPs

Veeam Simplified: The Easy Button for MSPs Protecting Microsoft 365

FREE WHITE PAPERS FROM OUR SPONSORS

The Easy Button eBook: Simplicity of SaaS-Based Backup for Microsoft 365

H1 2025 Threat Landscape Report

The Real Gap in Traditional EDR Security

3 Signs It's Time to Consolidate Your Stack