Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Trend Micro Fixes Security Flaws



 By: Brian Prince
2007-08-22
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
Trend Micro has patched numerous flaws in its ServerProtect, Anti-Spyware and PC-cillin products.

Trend Micro has patched several vulnerabilities in its ServerProtect, Anti-Spyware and PC-cillin products that could be exploited remotely to allow hackers to execute arbitrary code.

Several vulnerabilities affected ServerProtect, which provides anti-virus protection for Microsoft Windows and Novell NetWare servers. According to researchers at iDefense Labs, in Sterling, Va., an integer overflow exists within the RPCFN_SYNC_TASK function, which allocates memory based on a user-supplied integer within the request data.

Resource Library:
If an attacker causes the overflow, too little memory will be allocated and user-supplied data is copied into the resulting buffer using lstrcpyW(). The end result is an exploitable heap buffer overflow, researchers wrote in an advisory.

A number of boundary errors can also be used to trigger buffer heap and/or stack-based buffer overflows. All of the vulnerabilities affect ServerProtect for Windows 5.58 Build 1176 (Security Patch 3), iDefense officials said, adding that previous versions and versions for other platforms are suspected to be vulnerable as well. The company has released Security Patch 4 to plug the security gaps.

In addition, Trend Micro recently fixed flaws affecting version 3.5 of its Anti-Spyware offering, as well as PC-cillin Internet Security 2007. Both products are susceptible to stack buffer overflows due to a boundary error within the SSAPI module in vstlib32.dll, which can be caused by creating a file with an overly long path name and results in an exploitable buffer overflow.

"Successful exploitation allows execution of arbitrary code with SYSTEM privileges, but requires that the Venus Spy Trap [VST] functionality of SSAPI is enabled," researchers at the Danish security firm Secunia wrote in an advisory.

Trend Micro has released a hotfix to address the problem.

Check out eWEEK.coms Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEKs Security Watch blog.



  Reader Comments: Trend Micro Fixes Security Flaws
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


xr㶲0;; ʷ♵MR-Z-/K3^:U*$ER$gy 7](ɗdĶD th4I"nZΘ\̦dwꚃ>CK$wB}NUQV C7((bP<HwO7n[cQ0Ra᳙*,Q  tjGt0]2x6k:&o4veki cߨ_[&``1Z|R j9iݓ |i @I>R(h] ]( ѼGeMGQR`N Cw*Nul9 Q)+X^DP~FDM:ǎ-4rwA̚2PcwҴ֟v;P;U{Q5hw/E@^cBȡ[Rh=7dc7.{$͑w2K*-aе :9zu v}j:GJ73ҧ }KH;R@}ky>5I ib1lp:E%$7 .mqVRW`?Ķh':eh?Cuoez^uwcߝ9Iz]],s&"U+wS&>dRr-2QȲnMw3a[]ѡlwZkuE9,},^yxx(>X>-\hӟF_{JU4Eٿ]uί $(֝;pm+iu]+i0n{'WO틋y@.{A~$?Fj}&UJDZ-i& 0h!5&tt:~Xst\㍒~7nJe_P+).C#-b|+0CF_8riOsK߾ڤ>>?O}1fPk5M~"3h ؕgxo4X:nOOn_9n;W'9ސqٝN4p3 Z_Zr`C['^ϏSS?&:aZ+}I-IM&!usL ,ߖeBu޿ } ,-)Ttܿ/Rzhf5 t @CX&%'e)":u Psƒf}t-Mn #dLi&ϬFh-Aho*K>Lr &@Sk~$GM ]5ņ])!exNS{}Z—W/(AK/ ڊ5z>]Q4{3Bɽ`g@ɋ BD4?CzC0!pl/ݜ~L.΃fmќ-Ӆ]WcM^cL .Cuv}Bzݫ^?]{Y8^%g 5F4 ie4%!8W5MGVOL絯Tf~X}U9-zQnʼnl :2X jXR7HaQǟgtA`:)ҧ!>RӚMCqRO#Gs>H2胎6mb8-" ,70}HOqI 4 Q٭lE%_¤< ) FA=H:]6(Z\?`c VC@B랂9׿ޚB"Qޒҡ4aqj =*~3=w}   @lߣ5#~[-[Z6x O͙A }(~~9-RC1" EEKy3@ $h-4`z.= ŊHݑvZ)JPl=!ԑt݁ZZl~reٌi8SA0>A̞,j\hm9Y螹cMEiKJιo7O)j`>V*7vrgNH/x|WY 3EDVhdF!Z!= \P(,Tw^EY䞅Ꞧ৚,, H@,gmd0{V@q)2Sf4),4BtOݡ~u_?~UkCT]ٽx@r6ʞy0sm-VJ{g@xC X{ /WèKA* _hi lsiɰCm6|G9Ȇ騤g?mMtn:{j,j&M{?&TYV0>2ei[FohCMۯrv'`ܱK()em*d?v= kQDz?{vl>q/L|2ې 7q'J[Y*b=)4jKzF 烊7@E30kŠ%lDc*tg²읶ה]%/_(̧76y+U}=cGLmRGMBV׽IAʫuf z6V&J~5<2eX]2X>rGmAutn\?(yS+rf! MqN!PS bY4(Nu=(UF5GQ/WAY@hnEJc\Cњy]֩;lRjzئ\Q߀+%E!5؉b]DzmA32"tn‚_8R" @4 y *zq  b (h bAzpSE+ `bIua1:C5f>z_{=2dB4]Ef,E3|!R_OaYj8+ 8 #UQ@X5Ɂ;΁Eo|/Ne6ZRz7ܮ[K'~g^l^Ncv"O`R$p2HUάa>_Ik0 3le`Sxt( b=*亢#Ïn OQGA.C{a&:pBTnЬ 0ԴKZ/a51rY i&%lĦOmDozc_7)~|$DC9m{~Ke T'-FRV%^틨萫IIKɂ]AӀM\r8+hs%p}/O&PFzM%Rq4i#⩬yF(.&!skO̦:zfҮ&t]V1Tcf?e&q`5\צLDt Z:LT)wOLKZ^$|p`푱Eb{IT"N=ymO5Ouef`<$ɝ?5p_@7|*i7JղAk JZ8~G;a#ri&QHZ#OYdY.eժR+n8L3Ay vBs9c-|V n&*uN: C_nNeO5F<7r`sV(; J@c$bw}\Wsz^^NN:Wg a=hF[!^9Kusֹ_>^to!CrѹjK^'kփ  EꀥG!hUHv&:b3hmƛ&%c/kC2 xmdDi+%,ҽ9ipf빨kZ ^/k=WE.17LU8\F`Y;²VXȬy`&|C7$T0r(`$X)XBe:ӻh}sgu؋n/rm D78%C*QW<2EhiA&7-xz|-r􍢯HMɉڎ"ފ,})Fy.}y>}ߚexD+GBY1g%VI'O{GH$E ?_9/wb!BQr 7[%E٦7db&ubNL5W"v {t1݇QLwʩރt e~=m1겨uC%L<2GN)gtJē(=)jڊIմg<8I5F4A2 uID? Mt4DPW Hق[W5=۴8^]ҹ<ۺm|`L`ql)ZQ"|Nr 9n]D`e>R!G[yQb] QZ4ղoeW!= |Bs`c=C!D!QFr^TzaUu&Ա0@ktH.]<;n; WS漊eFnOa7pϲl^ta9`|;pg5];DƸ DucBA095zBϝO(|i9A 6̯> H-@^ FP ߽?Fq>p]Qz AC~o}\0n;z{w7|Of0w+iv;}pܶ4|dM#}ӾJf9k^d̠t4s w{!.`0.E<7?~eҰ+w= =z»s.+R!ykE7_SU+sT7ڼ&E%:m֗Fݽ]vBĬxBwb!"&VH"sQxF4%W}r/W>$0ڞ i܅i=w{ݯ6@5r=f͵U⃺T%UٔJČJG?rGҍַ)%4t\n`8p_Slwh67T%e_RMFE'E%fd)lYL1M8$k-Ȑ-nn¶jTyun:vM*+#f@t1? o0"1 >Ws@D")@_/mK-qnnW{Fj2R%]+~څa|%6eMHIAXgScv%mck\=+<gV(Pb/e"^&_oll5֒Q%u%3,q527 78xyyyy_qL;SӸtBz3BЯSA_u~p+zL}+I0ԑ':%``pXD","`G`mje&W&Q:ϠJYmU[余ɰxy|VP5ukg/oA3e{c\Wcñ|{p(R !\G`2; 8wv{[ + g< lg7&P<=nM֯lM/MMSݶS9C4 p&?(ӆGNuk Tj y=AY*y{6} s/0%-1Gl^MMp[VsM ~VEjk2=qcOQ*+^ D@mPlѪ}!*l)}҆l[9j6= 5F B1;e& O oN7ʏ]ڑȣ)yyyyrObiIL"Ђ'rJuLHY9gô)PhI]ez]=/8c=zu4g^BAe؝p"pwy޵kz@! zi_xA=zd[T~{Ȱd9_F`\iÜeH-G RTKs9]ap\g @&OoE8ϤH/0GԊtqF 3tM] PZ}ԟV3J^Ҍ7 '+7lO oi>:$(Be9 1oەz@ME% |i.4^:)]΂\OL>g&7}^ y-E;z#/"*ҕͺ`/? /8gDUoaoL #Vb\Uҟ CwZhl|Ӟy;'Ib`cwP jz {P^Zǃ2z1 ʴĔwmYmʔ9k3"{A[o&/6௶aul<%/S35|`YmZۈYѧS.$zW2EZZI ne86'szlï^JYf%e։V$?0b*NhP2uQT o^H`՗-I L *`l{hOwf>`!Zp6P]}zUcb6è˜.-Nuw~φxͤql`ʕtq"o(27=X67 ~VxrϪvm _@dzgc ЌBMwȭn ZEO/:Ӧ?$BMYl|pìfo!_`n2yK1u-{Ga0D%|A~'Oww{=OaR--:'7y "Eo <7ǹ={B=p ܴǮOV2 auמQN|l:/kdjj}ۏoS? TŢW\޹#5|5XmÈ;2CכdžTc#kx|_CY7i."9Ee9L BdUĠAɌB<잠wĸW\ܓmIH՗k5]K ,^b֪Y"'"KIE/,]Q|%~4. dR/)_V6TPEmMEfIȢD0E\1]Ք}ub? @utNk-b"K]ɖ1x}[/>Lz'5aL5P;IU6'a|Q½k@*VH5i3QwMq͗5]5̈ Z/kafBtmzYC슧u`n.қ≡37:QSIU ;w?bOnH YE[TSvXƳZ xR͘,A&}lk4Tp*,Cק6:F}H%LĐ@mjUwZE=4!#M_ZהV/`eEZcgaPh.1XFsP}Ӝ"Z{6ֱ:rJE+ mݷHt=\* EL ;рi%?"AdQ9D٢0ǖCo0%m4,1\C/7"\R4Hfsև5o$x^+jB6 "|t%O3GπЩHۡ$Z[dн"#hH[ 뛫u1p2O7lfmmEUk)7g%Ή0,%n9ݱ=X NPG"y԰t|G*_[Ex}%rUq{V]@nGLmW1Ք6ZvN[Ļe 5k SSxcLW<00t#PγjNT\pY}XC3 L^^ĭRQ+S[Ⱥext퀯J"⌯r[#mk0d#:&. ):]БߕjmO*IgO.4G_ 6f^FGZQ)MG);}o Kcb2zވqn5:5 boEіIv# ,Őڞ?,D1# q}n\moza'wB&#xTy;򧺸ԟ(u~+>cW!'vq]Q sbkwFnH ]ąي!̆\oX|J7b7|$rkIC913_nzʾR0F$u*C:΀ Z1ḧiED#RhbGDcM /7nrn[ք ተ 5"  B-^>\o:WBa&hLo慾,Ǜ,# rzպl3;eFq(M1B*rKxu" /W%Lqx&)ӳ(/PJTٌ/!jb\ͩ2M؂7?iz[''7^O˧VRk!??gg:ޖZke5?{ >r:X)` FIc r!>/}ҽjIJ/./r_r_sofuq wS_]~48iCSi}Πg9?Ww I9)urUN9_z/Pyuȁ]2g|./e|e}/>9/sKD)?@?r/2*g|@~r *gnN9 _?s޿y&z/_?}OP)'ߧBm^9mB9_zy[9rֺƅ۩QNy*P/nvs :WK?sz9^}NAF&话Iz]!,.5PW[k+/YY֕cn-:Aba/ c|e$2/M&#(R^>Ȧc˼=>w懴Ix崝#&J2˯-7cENz%.~QFxd\$h{U26#{"cW'"Xʽq>eybnAR-c#}qN8(G.v)n7ӷpK|SG0Κ{Zӛ;ڎwڝGfzuieDd;w6 K췡^ţu.TlfDdU:.UJ0XR^9Q(Fuo*K0njE=u̐ga0V1;BDO"Oӱw;fCWe"eƋ&æʗጽJ/Dʑ $`W pL\ Psg~ =u] YIE>,XA0{6VI2hؐ,sv[F8 c| M3,>H?30e,4Ɲ0N($LfLd~w+SOf@L V$/>t zCcjd>Mk +#P<,P/A٣;=~]ɞSfKH!L&d/>[l,)1 {;kh6Nhp@y 0t]vY;sr%S$)Vy`_GFb3+u B:ɄdX.N`'}ס)e4t儃_ v:쭨F|m)۹f,ӧ6&'sMz=>~Pւ!نIf[.dpaHz_;_1PDY/u[.Y{N6^ )4M˚HμP{jKQRJVr.U ?`nzۭtߘHmgX|@ăx!$KVT^p|"ÃWl=$y1|t,G巧gs9>%^Πo'b/K{K9((& ]a1W%$}HRݤ#9"% oPmFO0G`{sHO)t&I`S'11|0j;;1Te]ZQYɶy SO~j϶(#o݂k\+<>aiЄ.^p멎TU|JA1Y%i#|@ =(ۊnfT|!`GYe`Zkv 8u vKѲ v7"ְ0ޏx'rYH3LN*s=cm;pSz2V Qm`%N \50(|Ntu ۊ|Va=r+sb:igNb+cb@xϖέ{~k#'>g~wx}r!}/ő׈,,L[˅Z']XD!hXbE"O q~ mfK#fE1[Rj2 19,O)xI1%h3l䣈mAb ?ӵk[),c{byO|g~C{%9w:a0>~09&rX)>ٔ6s`=`Z]x O!0YdWP Y-f1%Dv$8ґCA؞B*>e31C7Dn0BrH d[H_مtv3\j9/YH~1 <99.@OI"cXM1}a`|3<'\B/1,#ŠN|Cp1NU_:m]v.>J{`g^vTvQKe