5 matches found
EUVD-2018-2586
Malware in sbrugna...
Deserialization of untrusted data
A Deserialization of Untrusted Data Privilege Escalation vulnerability in Trend Micro Security 2018 Consumer products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in...
CVE-2018-10513
The connected ZDI advisory ZDI-18-961 details a local privilege‑escalation vulnerability in Trend Micro products (e.g., Trend Micro Maximum Security) involving deserialization of untrusted data in ID_AMSP_MASTER requests. The flaw occurs in the coreServiceShell.exe service process when parsing re...
CVE-2018-15363
An advisory for CVE-2018-15363 describes an Out-of-Bounds Read Privilege Escalation in Trend Micro Security 2018 (Consumer) products. The vulnerability stems from lack of proper validation of user-supplied data in coreServiceShell.exe (ID_AMSP_MASTER path) processing of request ID 0x2002, allowin...
CVE-2018-15363
An Out-of-Bounds Read Privilege Escalation vulnerability in Trend Micro Security 2018 Consumer products could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...