Trend Micro Multiple Products TmComm.sys IOCTL Handler Local Privilege Escalation

The version of tmcomm.sys installed on the remote system is affected by a local privilege escalation vulnerability. The issue exists due to insecure permissions on Tmcomm.sys which allows write access to 'everyone' group on the remote system. Successful exploitation of this issue could lead to...

[Reversemode Advisory] TrendMicro Products - multiple privilege escalation vulnerabilities.

Trend Micro Products Multiple Local Privilege Escalation Vulnerabilities Discovered by: Rubйn Santamarta [email protected] Affected products: Client / Server / Messaging Security for SMB – 3.5 PC-cillin Internet Security - 2007, Trend Micro AntiVirus – 2007 Trend Micro Anti-Spyware for SMB –...

CVE-2007-0856

TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module RCM, with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client...

CVE-2007-0856

CVE-2007-0856 concerns Trend Micro’s Anti-Rootkit Common Module (TmComm.sys) where the DOS device interface "\.\TmComm" insecurely permits writes to the Everyone group. This can grant local users access to privileged IOCTLs and may allow execution of code or overwriting memory in kernel context, ...

CVE-2007-0856

TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module RCM, with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client...