15 matches found
EUVD-2018-16946
Malware in sbrugna...
EUVD-2018-2586
Malware in sbrugna...
CVE-2018-8567
creationtimestamp| type| source ---|---|--- 2018-11-14 17:39:01+00:00| seen| MISP/5bec5b59-b2b0-4506-9c63-32a40a021402...
CVE-2018-15421
creationtimestamp| type| source ---|---|--- 2018-09-21 22:27:28+00:00| seen| MISP/5ba56ff7-d494-42a5-a402-64760a021402...
Privilege escalation
An Out-of-Bounds Read Privilege Escalation vulnerability in Trend Micro Security 2018 Consumer products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...
Deserialization of untrusted data
A Deserialization of Untrusted Data Privilege Escalation vulnerability in Trend Micro Security 2018 Consumer products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in...
Privilege escalation
A Missing Impersonation Privilege Escalation vulnerability in Trend Micro Security 2018 Consumer products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...
CVE-2018-10513
The connected ZDI advisory ZDI-18-961 details a local privilege‑escalation vulnerability in Trend Micro products (e.g., Trend Micro Maximum Security) involving deserialization of untrusted data in ID_AMSP_MASTER requests. The flaw occurs in the coreServiceShell.exe service process when parsing re...
CVE-2018-15363
An Out-of-Bounds Read Privilege Escalation vulnerability in Trend Micro Security 2018 Consumer products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...
CVE-2018-15363
An advisory for CVE-2018-15363 describes an Out-of-Bounds Read Privilege Escalation in Trend Micro Security 2018 (Consumer) products. The vulnerability stems from lack of proper validation of user-supplied data in coreServiceShell.exe (ID_AMSP_MASTER path) processing of request ID 0x2002, allowin...
CVE-2018-6233
A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security Consumer 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x222060 by the tmnciesc.sys driver. An attacker must first obtain the abilit...
CVE-2018-6229
creationtimestamp| type| source ---|---|--- 2018-02-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44166...
CVE-2017-17409
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
CVE-2017-17409
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
CVE-2017-17408
Bitdefender Internet Security (2018) contains an integer overflow in cevakrnl.xmd that fails to validate user-supplied data, enabling remote code execution with SYSTEM privileges after a user visits a malicious page or opens a malicious file. The issue has been disclosed in ZDI-CAN-5101 (ZDI-17-9...