CVE-2005-3379

Name of the Vulnerable Software and Affected Versions Trend Micro PC-Cillin version 12.0.1244 Trend Micro OfficeScan version 7.0

Description The issue allows remote attackers to bypass virus scanning by using files with an "MZ" magic byte sequence, which is normally associated with executable files. This causes the file to be treated as a safe type, even though it could still be executed as a dangerous file type by applications on the end system. This can be demonstrated by a "triple headed" program that contains executable, email, and HTML content.

Recommendations For Trend Micro PC-Cillin version 12.0.1244, update the virus scanning engine to a version that correctly identifies and scans files with the "MZ" magic byte sequence. For Trend Micro OfficeScan version 7.0, update the virus scanning engine to a version that correctly identifies and scans files with the "MZ" magic byte sequence.