A buffer overflow privilege escalation vulnerability in Trend Micro Maximum Security (Consumer) 2018 could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within processing of IOCTL 0x22205C by the tmnciesc.sys driver. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
References
Link | Resource |
---|---|
https://esupport.trendmicro.com/en-us/home/pages/technical-support/1119591.aspx | Mitigation Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-18-266/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trendmicro
Published: 2018-05-25T15:00:00
Updated: 2018-05-25T14:57:01
Reserved: 2018-01-25T00:00:00
Link: CVE-2018-6232
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-05-25T15:29:00.303
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-6232
JSON object: View
Redhat Information
No data.
CWE