Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Trend Micro ServerProtect 5.58, and possibly InterScan Messaging Security Suite and InterScan Web Security Suite, have a default configuration setting of "Do not scan compressed files when Extracted file count exceeds 500 files," which may be too low in certain circumstances, which allows remote attackers to bypass anti-virus checks by sending compressed archives containing many small files. NOTE: since this is related to a configuration setting that has an operational impact that might vary depending on the environment, and the product is claimed to report a message when the compressed file exceeds specified limits, perhaps this should not be included in CVE.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro ServerProtect已提取文件数超出扫描绕过漏洞
Vulnerability Description
Trend Micro ServerProtect 5.58,并且还可能包括InterScan Messaging Security Suite和InterScan Web Security Suite,具有一项默认设置,即"当已提取的文件数超过500时不扫描压缩文件",这个限值在某些情况下可能会太小,从而使得远程攻击者可以借助发送包含众多小文件的压缩包来绕过反病毒检测。
CVSS Information
N/A
Vulnerability Type
N/A