Malware Detection Bypass in Trend Micro Antivirus Products
CVE-2008-5545

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Trend Micro Antivirus
Vendor: CVE Published:; 12 December 2008

Summary

The vulnerability in Trend Micro AntiVirus, particularly in version 8.700.0.1004, arises when leveraging Internet Explorer 6 or 7. It enables remote attackers to circumvent malware detection mechanisms by manipulating the content of HTML documents. By placing an MZ header at the beginning of such documents and altering the filename to exclude traditional extensions, or using extensions like .txt or .jpg, attackers can introduce exploits, including those targeting CVE-2006-5745, without triggering detection alerts from the antivirus software.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/47435

vdb-entryx_refsource_XF

http://securityreason.com/securityalert/4723

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/archive/1/499043/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Dec 12, 2008
Vulnerability Reserved
Dec 12, 2008