CVE-2007-4277

Currently unrated

Key Information:

Vendor: Trend Micro
Status: Pc-cillin Internet Security 2007; Scan Engine
Vendor: CVE Published:; 30 October 2007

Summary

The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) for the \.\Tmfilter device, which allows local users to send arbitrary content to the device via the IOCTL functionality. NOTE: this can be leveraged for privilege escalation by exploiting a buffer overflow in the handler for IOCTL 0xa0284403.

References

http://secunia.com/advisories/27378

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/26209

vdb-entryx_refsource_BID

http://esupport.trendmicro.com/support/viewxml.do?Content...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 30, 2007
Vulnerability Reserved
Aug 9, 2007