CVE-2009-1435

Name of the Vulnerable Software and Affected Versions Trend Micro OfficeScan Client versions 8.0 SP1 through 8.0 SP1 Patch 1

Description A security issue in Trend Micro OfficeScan Client can be exploited by malicious, local users to cause a denial of service. The issue is caused by an error when scanning directories with overly long pathnames, which can terminate the NTRtScan.exe process and temporarily disable real-time scanning protection.

Recommendations For Trend Micro OfficeScan Client versions 8.0 SP1 through 8.0 SP1 Patch 1, consider restricting access to directories that could be used to exploit this issue, such as those with overly long pathnames, until a patch is available. As a temporary workaround, avoid scanning specially crafted directories that could cause the NTRtScan.exe process to terminate.