File Type Interpretation Error in Trend Micro Products
CVE-2005-3379

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Pc-cillin 2005; Officescan
Vendor: CVE Published:; 30 October 2005

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2005-3379?

In Trend Micro's PC-Cillin 2005 and OfficeScan products, a file type interpretation error allows remote attackers to bypass standard virus scanning mechanisms. The vulnerability arises due to specific files, such as BAT, HTML, and EML, containing an 'MZ' magic byte sequence, typically associated with executable files. As a result, these files may be incorrectly classified as safe, enabling potential execution of malicious content. This vulnerability illustrates the need for robust scanning mechanisms capable of accurately identifying file types to prevent the execution of harmful files.

References

http://www.securityfocus.com/bid/15189

vdb-entryx_refsource_BID

http://www.securityelf.org/magicbyte.html

x_refsource_MISC

http://www.securityfocus.com/archive/1/415173

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 30, 2005
Vulnerability Reserved
Oct 29, 2005