Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security / Advisories

Advisories

A So Called Antivirus That Might Damage Your Computer

Critical vulnerability in Trend Micro's products

By Bogdan Popa, Security and Search Engines Editor

22nd of August 2007, 12:41 GMT

Adjust text size:



Enlarge picture
Trend Micro has always been that kind of company which struggled to create something revolutionary able to compete with the security giants. However, the security firm didn't manage to become one of the leaders but even so, numerous consumers from every corner of the world were
still attracted by Trend Micro's solutions. This article is especially addressed to them because security company Secunia reported a moderately critical vulnerability that can allow an attacker to obtain high privileges on an affected system. According to the report, the security flaw was confirmed in Trend Micro PC-cillin Internet Security 2007 15.0, 1.5.2, 15.3 and Trend Micro AntiSpyware 3.5.

"The vulnerability is caused due to a boundary error within the SSAPI module in vstlib32.dll when processing path names. This can be exploited to cause a stack-based buffer overflow by e.g. creating a file with an overly long path name. Successful exploitation allows execution of arbitrary code with SYSTEM privileges, but requires that the Venus Spy Trap (VST) functionality of SSAPI is enabled," Secunia wrote in the advisory.

The interesting fact about this security hole is that you can patch it using a temporary fix because the parent company Trend Micro said that a full patch to resolve the vulnerability will be officially rolled out on September 10, 2007.

As you can see, most of the antivirus solutions available on the market are affected by more or less critical vulnerabilities. So, where's our security? Well, it is rumored that it still exists as long as the consumers are a little bit paranoiac to ignore all the unsolicited messages coming into their inbox, to avoid chatting with unknown contacts on the instant messaging files and to refuse downloading unrequested files. However, let's hope that the top security solutions currently available will manage to become more powerful and protect our computers from any kind of threat.

TAGS:

 trend micro | antivirus | vulnerability | security


Rating:
Good (3.6/5) 5 vote(s) so far    

Read by 456 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


EASY Way to Test Your Antivirus!

Trend Micro Antivirus Vulnerable to Attacks

The Pandas Strike Again!

NOD32 Antivirus Solution. Or Not?

Kaspersky Antivirus = Not-Safe-To-Use Antivirus?!

Panda Anti-Antivirus?!

Panda Antivirus or How to Remain Vulnerable Even If You Have Protection

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive