CVE-2002-0440

Trend Micro InterScan VirusWall HTTP proxy 3.6 - Open Redirect

Title source: llm

Description

Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jochen Thomas Bauer · cremotemultiple

https://www.exploit-db.com/exploits/21339

View Code ZIP pw:eip

References (4)

[Various Sources] http://www.inside-security.de/vwall_cl0.html

[Mailing List] http://seclists.org/lists/bugtraq/2002/Mar/0162.html

[Third Party Advisory] http://www.iss.net/security_center/static/8425.php

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/4265

Scores

EPSS 0.0248

EPSS Percentile 85.3%

Details

Status published

Products (2)

trend_micro/interscan_viruswall 3.6

trend_micro/interscan_viruswall 3.51

Published Jul 26, 2002

Tracked Since Feb 18, 2026