CVE-2006-6458

Name of the Vulnerable Software and Affected Versions Trend Micro scan engine versions prior to 8.320 for Windows Trend Micro scan engine versions prior to 8.150 for HP-UX and AIX Trend Micro PC Cillin - Internet Security 2006 Trend Micro Office Scan 7.3 Trend Micro Server Protect 5.58

Description The issue allows remote attackers to cause a denial of service, resulting in CPU consumption and system hang, via a malformed RAR archive. This archive has an Archive Header section with the head size and pack size fields set to zero, which triggers an infinite loop.

Recommendations For Trend Micro scan engine versions prior to 8.320 for Windows, update to version 8.320 or later. For Trend Micro scan engine versions prior to 8.150 for HP-UX and AIX, update to version 8.150 or later. For Trend Micro PC Cillin - Internet Security 2006, update to a newer version that includes the fixed scan engine. For Trend Micro Office Scan 7.3, update to a newer version that includes the fixed scan engine. For Trend Micro Server Protect 5.58, update to a newer version that includes the fixed scan engine.