Remote Code Execution Vulnerability in TrendMicro InterScan VirusWall for Linux and Windows
CVE-2002-2394

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Interscan Viruswall
Vendor: CVE Published:; 31 December 2002

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2002-2394?

TrendMicro InterScan VirusWall versions 3.6 for Linux and 3.52 for Windows are susceptible to a bypass vulnerability that allows remote attackers to circumvent virus protection mechanisms. This weakness is due to inadequate processing of HTTP 1.1 chunked transfer encoding, which could potentially enable an attacker to execute arbitrary code. Organizations using these versions are advised to implement patches and safeguard their systems against possible exploitation.

References

http://www.securityfocus.com/archive/1/291538

mailing-listx_refsource_BUGTRAQ

http://www.iss.net/security_center/static/10106.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5697

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002