CVE-2007-4277

Опубликовано: 30 окт. 2007

Источник: nvd

CVSS2: 6.6

EPSS Низкий

Описание

The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) for the \.\Tmfilter device, which allows local users to send arbitrary content to the device via the IOCTL functionality. NOTE: this can be leveraged for privilege escalation by exploiting a buffer overflow in the handler for IOCTL 0xa0284403.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:trend_micro:pc-cillin_internet_security_2007:*:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:scan_engine:*:*:*:*:*:*:*:*

Версия до 8.500 (включая)

EPSS

Процентиль: 21%

0.00067

Низкий

6.6 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-g975-6398-g6r8

github

почти 4 года назад

The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) for the \\.\Tmfilter device, which allows local users to send arbitrary content to the device via the IOCTL functionality. NOTE: this can be leveraged for privilege escalation by exploiting a buffer overflow in the handler for IOCTL 0xa0284403.