Buffer Overflow Vulnerability in Trend Micro AntiVirus Scan Engine
CVE-2007-4277

Currently unrated

Key Information:

Vendor

Trend Micro
Status
Pc-cillin Internet Security 2007
Scan Engine
Vendor
CVE Published:
30 October 2007

What is CVE-2007-4277?

The Trend Micro AntiVirus scan engine prior to version 8.550-1001 has weak permissions for the \.\Tmfilter device, allowing local users to exploit the IOCTL functionality. This can lead to arbitrary content being sent to the device. The vulnerability can be leveraged for privilege escalation by exploiting a buffer overflow vulnerability in the handler for IOCTL 0xa0284403, which could allow unauthorized actions within the system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/27378
third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/26209
vdb-entryx_refsource_BID
http://esupport.trendmicro.com/support/viewxml.do?Content...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.