Lucene search
HistoryApr 01, 2009 - 10:30 a.m.
CVE-2009-0686
trendmicro
activity monitor
module
tmactmon.sys
cve-2009-0686
security pro
internet pro
local privilege escalation
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
The TrendMicro Activity Monitor Module (tmactmon.sys) 2.52.0.1002 in Trend Micro Internet Pro 2008 and 2009, and Security Pro 2008 and 2009, allows local users to gain privileges via a crafted IRP in a METHOD_NEITHER IOCTL request to \Device\tmactmon that overwrites memory.
Affected configurations
Node
trendmicrointernet_securityMatch2008
ORtrendmicrointernet_securityMatch2008-pro
ORtrendmicrointernet_securityMatch2009
ORtrendmicrointernet_securityMatch2009-pro
References
Social References
More
Related
nvd
nvd
CVE-2009-0686
2009-04-01 10:30:00
seebug
seebug
θΆεΏη§ζInternet Security tmactmon.sysι©±ε¨ζ¬ε°ζιζεζΌζ΄
2009-04-02 00:00:00
ptsecurity
ptsecurity
cvelist
cvelist
CVE-2009-0686
2009-04-01 10:00:00
securityvulns
securityvulns
prion
prion
Cross site request forgery (csrf)
2009-04-01 10:30:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
Related for CVE-2009-0686