Remote Code Execution Flaw in InterScan VirusWall by Trend Micro
CVE-2002-0637

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Interscan Viruswall
Vendor: CVE Published:; 11 July 2002

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2002-0637?

InterScan VirusWall version 3.52 build 1462 has a vulnerability that enables remote attackers to bypass its virus protection mechanism. This issue arises from improperly handled email headers that deviate from established RFC specifications, particularly due to unexpected space characters in headers. This can occur in fields such as 'Content-Type' and 'Content-Transfer-Encoding', or the absence of a space before boundary declarations. Exploiting this flaw may permit malicious code to be delivered via email without adequate detection, compromising email security and potentially leading to unauthorized access to affected systems.

References

http://www.iss.net/security_center/static/9464.php

vdb-entryx_refsource_XF

http://www.securiteam.com/securitynews/5KP000A7QE.html

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 11, 2002
Vulnerability Reserved
Jun 25, 2002