Lucene search
Abdelhamid Naceri (halov)ZDI-22-014HistoryJan 06, 2022 - 12:00 a.m.
Trend Micro Apex One Link Following Denial-of-Service Vulnerability
2022-01-0600:00:00
Abdelhamid Naceri (halov)
www.zerodayinitiative.com
14
trend micro
apex one
security agent
denial of service
vulnerability
real-time scan service
EPSS
0
Percentile
15.9%
This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Real-time Scan Service. By creating a symbolic link, an attacker can abuse the service to overwrite a file. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Related
cvelist
cvelist
CVE-2021-44024
2022-01-08 15:51:04
CVE-2021-45442
2022-01-08 15:51:08
cve
cve
CVE-2021-44024
2022-01-10 14:10:25
CVE-2021-45442
2022-01-10 14:10:29
prion
prion
Design/Logic Flaw
2022-01-10 14:10:00
Design/Logic Flaw
2022-01-10 14:10:00
nvd
nvd
CVE-2021-44024
2022-01-10 14:10:25
CVE-2021-45442
2022-01-10 14:10:29