Lucene search
AnonymousZDI-18-962HistoryAug 30, 2018 - 12:00 a.m.
Trend Micro Maximum Security ID_AMSP_MASTER Missing Impersonation Privilege Escalation Vulnerability
2018-08-3000:00:00
Anonymous
www.zerodayinitiative.com
10
0.0004 Low
EPSS
Percentile
16.1%
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within processing of request ID 0x2ff0000b in request ID_AMSP_MASTER by the coreServiceShell service. The service does not properly impersonate the client before executing sensitive operations. An attacker can leverage this vulnerability to escalate privileges to SYSTEM.
Related
prion
prion
Privilege escalation
2018-08-30 19:29:00
cve
cve
CVE-2018-10514
2018-08-30 19:29:00
cvelist
cvelist
CVE-2018-10514
2018-08-30 19:00:00
nvd
nvd
CVE-2018-10514
2018-08-30 19:29:00
openvas
openvas
Trend Micro Internet Security Multiple Vulnerabilities (May 2018) - Windows
2018-05-08 00:00:00
Trend Micro Maximum Security Multiple Vulnerabilities (May 2018) - Windows
2018-05-08 00:00:00
Trend Micro Antivirus Plus < 12.0.1226 Multiple Vulnerabilities
2018-05-08 00:00:00