BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Trend Micro Titanium Maximum Security 2011 Local Kernel Level Privilege Escalation

Disclosed November 2, 2010    Fully Patched

Vulnerability Description:

Trend Micro Maximum Security 2011 contains a local privilege escalation vulnerability that is caused by a pointer overwrite vulnerability. This could be leveraged to allow an attacker to gain kernel-level privileges and execute arbitrary code.

Vendors:

Trend Micro

Vulnerable Software/Devices:

Trend Micro Titanium Maximum Security 2011 version 3.0.1303

Vulnerability Severity:

Medium

Exploit Availability:

N/A

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 15860 - Trend Micro tmtdi.sys Kernel Driver Privilege Escalation

Mitigation:

A hot fix is available, in addition to an updated version of Titanium Maximum Security 2011 that is not vulnerable to this issue.

Links:

CVE(s):

None