Trend Micro VSAPI ARJ Handling Heap Overflow Vulnerability

BID:12643

Info

Trend Micro VSAPI ARJ Handling Heap Overflow Vulnerability

Bugtraq ID: 12643
Class: Boundary Condition Error
CVE: CVE-2005-0533
Remote: Yes
Local: No
Published: Feb 24 2005 12:00AM
Updated: Jul 12 2009 10:56AM
Credit: Discovery is credited to Alex Wheeler.
Vulnerable: Trend Micro ServerProtect for Windows
Trend Micro ServerProtect for Novell Netware
Trend Micro ServerProtect for Linux 1.2
Trend Micro ServerProtect 5.3.1
Trend Micro ScanMail for Microsoft Exchange 6.1
Trend Micro ScanMail for Microsoft Exchange 3.81
Trend Micro ScanMail for Microsoft Exchange 3.8
Trend Micro ScanMail for Lotus Domino on Windows
Trend Micro ScanMail for Lotus Domino on Solaris
Trend Micro ScanMail for Lotus Domino on S/390
Trend Micro ScanMail for Lotus Domino on AS/400
Trend Micro ScanMail for Lotus Domino on AIX
Trend Micro ScanMail for Domino 2.51
Trend Micro ScanMail for Domino 2.6
Trend Micro ScanMail eManager
Trend Micro PortalProtect 1.0
Trend Micro PC-cillin 6.0
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 Trend Micro PC-cillin 2003
Trend Micro PC-cillin 2002
Trend Micro PC-cillin 2000
Trend Micro OfficeScan Corporate Edition for Windows NT Server 3.13
- Microsoft Windows NT 4.0
 Trend Micro OfficeScan Corporate Edition for Windows NT Server 3.11
- Microsoft Windows NT 4.0
 Trend Micro OfficeScan Corporate Edition for Windows NT Server 3.5
- Microsoft Windows NT 4.0
 Trend Micro OfficeScan Corporate Edition for Windows NT Server 3.1.1
- Microsoft Windows NT 4.0
 Trend Micro OfficeScan Corporate Edition for Windows NT Server 3.0
- Microsoft Windows NT 4.0
 Trend Micro OfficeScan Corporate Edition 6.5
Trend Micro OfficeScan Corporate Edition 5.58
Trend Micro OfficeScan Corporate Edition 5.5
Trend Micro OfficeScan Corporate Edition 5.0 2
Trend Micro OfficeScan Corporate Edition 3.54
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98SE
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Microsoft Windows NT 4.0 SP3
 - Novell Netware 5.1
- Novell Netware 5.0
- Novell Netware 4.11
- Novell Netware 4.1
- Novell Netware 3.1.2
Trend Micro OfficeScan Corporate Edition 3.13
- Microsoft Windows 3.1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 - Novell Netware 4.11
- Novell Netware 4.1
Trend Micro OfficeScan Corporate Edition 3.11
- Microsoft Windows 3.1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 - Novell Netware 4.11
- Novell Netware 4.1
Trend Micro OfficeScan Corporate Edition 3.5
- Microsoft Windows 3.1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 - Novell Netware 4.11
- Novell Netware 4.1
Trend Micro OfficeScan Corporate Edition 3.0
- Microsoft Windows 3.1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 - Novell Netware 4.11
- Novell Netware 4.1
Trend Micro InterScan WebProtect for ISA
Trend Micro InterScan WebManager 2.1
Trend Micro InterScan WebManager 2.0
Trend Micro InterScan WebManager 1.2
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP6
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Microsoft Windows NT 4.0 SP3
 - Microsoft Windows NT 4.0 SP2
 - Microsoft Windows NT 4.0 SP1
 - Microsoft Windows NT Server 4.0
 Trend Micro InterScan WebManager 1.2
Trend Micro InterScan Web Security Suite for Windows
Trend Micro InterScan Web Security Suite for Solaris
Trend Micro InterScan Web Security Suite for Linux
Trend Micro InterScan VirusWall for Windows NT 5.1
Trend Micro InterScan VirusWall for Windows NT 3.52 build 1466
Trend Micro InterScan VirusWall for Windows NT 3.52
- Microsoft Windows NT Enterprise Server 4.0 SP6a
 - Microsoft Windows NT Enterprise Server 4.0 SP6
 - Microsoft Windows NT Enterprise Server 4.0 SP5
 - Microsoft Windows NT Enterprise Server 4.0 SP4
 - Microsoft Windows NT Enterprise Server 4.0 SP3
 - Microsoft Windows NT Enterprise Server 4.0 SP2
 - Microsoft Windows NT Enterprise Server 4.0 SP1
 - Microsoft Windows NT Enterprise Server 4.0
 - Microsoft Windows NT Server 4.0 SP6a
 - Microsoft Windows NT Server 4.0 SP6
 - Microsoft Windows NT Server 4.0 SP5
 - Microsoft Windows NT Server 4.0 SP4
 - Microsoft Windows NT Server 4.0 SP3
 - Microsoft Windows NT Server 4.0 SP2
 - Microsoft Windows NT Server 4.0 SP1
 - Microsoft Windows NT Server 4.0
 - Microsoft Windows NT Terminal Server 4.0 SP6
 - Microsoft Windows NT Terminal Server 4.0 SP5
 - Microsoft Windows NT Terminal Server 4.0 SP4
 - Microsoft Windows NT Terminal Server 4.0 SP3
 - Microsoft Windows NT Terminal Server 4.0 SP2
 - Microsoft Windows NT Terminal Server 4.0 SP1
 - Microsoft Windows NT Terminal Server 4.0 alpha
 - Microsoft Windows NT Terminal Server 4.0
 - Microsoft Windows NT Workstation 4.0 SP6a
 - Microsoft Windows NT Workstation 4.0 SP6
 - Microsoft Windows NT Workstation 4.0 SP5
 - Microsoft Windows NT Workstation 4.0 SP4
 - Microsoft Windows NT Workstation 4.0 SP3
 - Microsoft Windows NT Workstation 4.0 SP2
 - Microsoft Windows NT Workstation 4.0 SP1
 - Microsoft Windows NT Workstation 4.0
 Trend Micro InterScan VirusWall for Windows NT 3.51
- Microsoft Windows NT 3.5.1 SP5
 - Microsoft Windows NT 3.5.1 SP4
 - Microsoft Windows NT 3.5.1 SP3
 - Microsoft Windows NT 3.5.1 SP2
 - Microsoft Windows NT 3.5.1 SP1
 - Microsoft Windows NT 3.5.1
- Microsoft Windows NT 4.0 SP6a
 - Microsoft Windows NT 4.0 SP6
 - Microsoft Windows NT 4.0 SP5
 - Microsoft Windows NT 4.0 SP4
 - Microsoft Windows NT 4.0 SP3
 - Microsoft Windows NT 4.0 SP2
 - Microsoft Windows NT 4.0 SP1
 - Microsoft Windows NT 4.0
 - Microsoft Windows NT 3.5
 Trend Micro InterScan VirusWall for Windows NT 3.6
Trend Micro InterScan VirusWall for Windows NT 3.5
- Microsoft Windows NT 3.5.1 SP5
 - Microsoft Windows NT 3.5.1 SP4
 - Microsoft Windows NT 3.5.1 SP3
 - Microsoft Windows NT 3.5.1 SP2
 - Microsoft Windows NT 3.5.1 SP1
 - Microsoft Windows NT 3.5
 Trend Micro InterScan VirusWall for Windows NT 3.4
- Microsoft Windows NT 4.0
 Trend Micro InterScan VirusWall for Windows
Trend Micro InterScan VirusWall for Unix 3.6 x
Trend Micro InterScan VirusWall for Unix 3.0.1
Trend Micro InterScan VirusWall for SMB Windows NT
Trend Micro InterScan VirusWall for SMB Linux
Trend Micro InterScan VirusWall for SMB
Trend Micro InterScan VirusWall for AIX
Trend Micro Interscan Viruswall (Solaris) 3.6
Trend Micro Interscan Viruswall (Linux) 3.6
- Redhat Linux 6.2 i386
 - Redhat Linux 6.1 i386
 - SuSE Linux 7.0
- SuSE Linux 6.4
- Turbolinux Turbolinux 6.1
Trend Micro Interscan Viruswall (Linux) 3.0.1
- Redhat Linux 6.2 i386
 - Redhat Linux 6.1 i386
 - SuSE Linux 7.0
- SuSE Linux 6.4
- Turbolinux Turbolinux 6.1
Trend Micro Interscan Viruswall (HP-UX) 3.6
Trend Micro InterScan Messaging Security Suite for Windows
Trend Micro InterScan Messaging Security Suite for Solaris
Trend Micro InterScan Messaging Security Suite for Linux
Trend Micro InterScan Messaging Security Suite 5.5
Trend Micro InterScan Messaging Security Suite 3.81
Trend Micro InterScan eManager 3.51 j
- Trend Micro InterScan VirusWall 3.32
- Trend Micro InterScan VirusWall 3.3
- Trend Micro InterScan VirusWall 3.2.3
- Trend Micro InterScan VirusWall 3.0.1
- Trend Micro InterScan VirusWall for Windows NT 3.51
- Trend Micro InterScan VirusWall for Windows NT 3.5
- Trend Micro InterScan VirusWall for Windows NT 3.4
Trend Micro InterScan eManager 3.51
- Trend Micro InterScan VirusWall 3.32
- Trend Micro InterScan VirusWall 3.3
- Trend Micro InterScan VirusWall 3.2.3
- Trend Micro InterScan VirusWall 3.0.1
- Trend Micro InterScan VirusWall for Windows NT 3.51
- Trend Micro InterScan VirusWall for Windows NT 3.5
- Trend Micro InterScan VirusWall for Windows NT 3.4
Trend Micro InterScan eManager 3.6 For Sun
- Sun Solaris 2.6_sparc
 Trend Micro InterScan eManager 3.6 For Linux
- Redhat Linux 6.1
- Redhat Linux 6.2
 - SuSE Linux 7.0
- SuSE Linux 6.4
- Turbolinux Turbolinux 6.1
Trend Micro InterScan eManager 3.5.2 For Windows
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
 - Microsoft Windows 2000 Datacenter Server SP1
 - Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Professional SP2
 - Microsoft Windows 2000 Professional SP1
 - Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT Enterprise Server 4.0 SP6a
 - Microsoft Windows NT Enterprise Server 4.0 SP6
 - Microsoft Windows NT Enterprise Server 4.0 SP5
 - Microsoft Windows NT Enterprise Server 4.0 SP4
 - Microsoft Windows NT Enterprise Server 4.0 SP3
 - Microsoft Windows NT Server 4.0 SP6a
 - Microsoft Windows NT Server 4.0 SP6
 - Microsoft Windows NT Server 4.0 SP5
 - Microsoft Windows NT Server 4.0 SP4
 - Microsoft Windows NT Server 4.0 SP3
 - Microsoft Windows NT Workstation 4.0 SP6a
 - Microsoft Windows NT Workstation 4.0 SP6
 - Microsoft Windows NT Workstation 4.0 SP5
 - Microsoft Windows NT Workstation 4.0 SP4
 - Microsoft Windows NT Workstation 4.0 SP3
 Trend Micro InterScan eManager 3.5 For HP
- HP HP-UX 11.0
- HP HP-UX 10.20
Trend Micro Control Manager Windows
Trend Micro Control Manager Win NT/2000
Trend Micro Control Manager Solaris
Trend Micro Control Manager S/390
Trend Micro Control Manager NetWare
Trend Micro Control Manager AS/400
Trend Micro Client/Server/Messaging Suite for SMB for Windows
Trend Micro Client/Server Suite for SMB for Windows
Not Vulnerable:

Discussion

Trend Micro VSAPI ARJ Handling Heap Overflow Vulnerability

The Trend Micro VSAPI scan engine library is prone to a heap-based buffer overflow vulnerability. This vulnerability may be triggered when the library processes a malformed ARJ archive.

The vulnerability affects multiple Trend Micro products. It is also noted that multiple attack vectors exist, as affected software may scan ARJ files in email attachments, and through various file transfer protocols.

Exploit / POC

Trend Micro VSAPI ARJ Handling Heap Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Solution / Fix

Trend Micro VSAPI ARJ Handling Heap Overflow Vulnerability

Solution:
Upgrading to scan engine VSAPI 7.510 or higher will address this vulnerability. Engine upgrades can be obtained at http://www.trendmicro.com/download/engine.asp

References

Trend Micro VSAPI ARJ Handling Heap Overflow Vulnerability

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report