Trend Micro InterScan VirusWall HTTP Chunked Encoding Filter Bypass

2002-09-12T10:13:49
ID OSVDB:6179
Type osvdb
Reporter Vincent Royer(vroyer@althes.fr)
Modified 2002-09-12T10:13:49

Description

Vulnerability Description

Trend Micro InterScan VirusWall contains a flaw that may allow a remote attacker to bypass antivirus protection. The problem is that the program does not include support for HTTP/1.1 chunked transfer encoding. It is possible that the flaw may allow a remote attacker to send malicious files resulting in a loss of integrity.

Solution Description

Upgrade to version 5.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Trend Micro InterScan VirusWall contains a flaw that may allow a remote attacker to bypass antivirus protection. The problem is that the program does not include support for HTTP/1.1 chunked transfer encoding. It is possible that the flaw may allow a remote attacker to send malicious files resulting in a loss of integrity.

References:

Vendor URL: http://www.trendmicro.com/en/products/gateway/isvw/evaluate/overview.htm Security Tracker: 1005247 Secunia Advisory ID:7101 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2002-09/0130.html ISS X-Force ID: 10106 Generic Exploit URL: http://www.althes.fr/virustest/index.html Bugtraq ID: 5697