CVE-2002-0440

Trend Micro InterScan VirusWall HTTP proxy 3.6 - Open Redirect

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0440. PoCs published by Jochen Thomas Bauer.

AI-analyzed exploit summary This PoC demonstrates a bypass vulnerability in Trend Micro InterScan VirusWall by serving an EICAR test virus with a Content-Length header set to 0, tricking the scanner into skipping the content while clients still process it.

Description

Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jochen Thomas Bauer · cremotemultiple
https://www.exploit-db.com/exploits/21339

This PoC demonstrates a bypass vulnerability in Trend Micro InterScan VirusWall by serving an EICAR test virus with a Content-Length header set to 0, tricking the scanner into skipping the content while clients still process it.

Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Trend Micro InterScan VirusWall (versions with 'Skip scanning if Content-length equals 0' enabled)
No auth needed
Prerequisites: Network access to a client behind VirusWall · Ability to host a malicious HTTP server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Various Sources x_refsource_misc
http://www.inside-security.de/vwall_cl0.html
Mailing List mailing-list x_refsource_bugtraq
http://seclists.org/lists/bugtraq/2002/Mar/0162.html
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/8425.php
Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4265

Scores

EPSS 0.0262
EPSS Percentile 83.5%

Details

Status published
Products (2)
trend_micro/interscan_viruswall 3.6
trend_micro/interscan_viruswall 3.51
Published Jul 26, 2002
Tracked Since Feb 18, 2026