|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Thierry Zoller (Thierry
Zoller.lu)
Date: Sat May 09 2009 - 05:24:24 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
______________________________________________________________________
UPDATE : Trendmicro RAR / CAB bypass evasion
______________________________________________________________________
CHANGES to original advisory [TZO-172009] Trendmicro :
------------------------------------------------------
Status : RAR / CAB issue WILL be patched on June 17
Quoting vendor :
"This vulnerability is capable of allowing attackers to send RAR files
with corrupted RAR headers through our gateway products, which bypass
the compressed files without scanning them."
Comment:
This just goes to proove that publishing changes perception, as
customers read, react and complain. (Trend previously denied
patching). In other words, always publish even if the vendor denies
patching.
In the name of all TrendMicro customers I would like to thank those
customers that reacted and complained. Wihtout publication there is no
change, without those reacting to advisories there is neither.
Prooves #2 and #5 at http://blog.zoller.lu/2009/04/dear-thierry-why-are-you-such-arrogant.html
to be valid.
Regards,
Thierry Zoller
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]