Skip navigation
Menu
Security

PC-Cillin Subject to DoS - 31 Dec 1999

 
PC-Cillin Subject to Denial of Service
Reported December 31, 1999 by Daniel Stasinski

VERSIONS AFFECTED
Trend Micro PC-Cillin v6.x

DESCRIPTION

Version 6.x of Trend Micro"s PC-Cillin Anti-Virus software can be subjected to a remote DoS attack and possibly authorized relays.

As part of it"s Java/ActiveX protection, it routes all http requests through its own internal proxy on port 8431. Unfortunately, it allows anyone anywhere to connect to that port and dump enough data through it to saturate an unexpected victims connection. Their tech"s could not confirm or deny if remote users are able to get an outbound connection from the victims
system.

VENDOR RESPONSE

Daniel has contacted Trend Micro and advised them of the problem, however according to Daniel the company has no plans to release a fix but would instead fix the problem in the next major release (v7.0 ?)

CREDITS
Discovered by Daniel Stasinski

Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
DevSecOps concept
90% of Java Services in Production Have Vulnerability Risk, DevSecOps Report Finds
Apr 20, 2024
Businesswoman challenges concept and gender obstacles
Women in Cybersecurity Face Barriers to Hiring, Advancement
Apr 15, 2024
person typing on keyboard with icons for certificates
Top IT Certifications for a Career in Finance
Apr 12, 2024
employee working on a laptop with AI
Why AI Coding Assistants May Be Greatest Cybersecurity Threat Facing Your Business
Mar 26, 2024