An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and 2.0 could allow a local attacker to place an arbitrarily generated DLL file in an installer folder to elevate local privileges. Please note: an attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
portable_security | ge | 3.0 | |
portable_security | lt | 3.0.5054 | |
portable_security | ge | 2.0 | |
portable_security | lt | 2.0.8056 | |
portable_security | ge | 3.0 | |
portable_security | lt | 3.0.5054 |