7.5 High
AI Score
Confidence
High
6.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:C/A:C
0.0004 Low
EPSS
Percentile
5.4%
The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) for the \.\Tmfilter device, which allows local users to send arbitrary content to the device via the IOCTL functionality. NOTE: this can be leveraged for privilege escalation by exploiting a buffer overflow in the handler for IOCTL 0xa0284403.
CPE | Name | Operator | Version |
---|---|---|---|
scan_engine | le | 8.500 |
esupport.trendmicro.com/support/viewxml.do?ContentID=1035793
esupport.trendmicro.com/support/viewxml.do?ContentID=1036190
labs.idefense.com/intelligence/vulnerabilities/display.php?id=609
secunia.com/advisories/27378
securitytracker.com/id?1018863
www.securityfocus.com/bid/26209
www.vupen.com/english/advisories/2007/3627