漏洞类别:Local
漏洞等级: 
漏洞信息
Trend Micro provides an antivirus and internet content security software for PC and Mobile.
Code injection vulnerability exists in multiple Trend Micro products, which may allow a local attacker to bypass a self-protection mechanism, inject arbitrary code, and take full control of any Trend Micro process via a "DoubleAgent" attack.
Affected Version:
Premium Security 2017 version 11.1.1005 and below
Maximum Security 2017 version 11.1.1005 and below
Internet Security 2017 version 11.1.1005 and below
Antivirus+ Security 2017 version 11.1.1005 and below
漏洞危害
An attacker can exploit this vulnerability to execute arbitrary code and take control of the affected system.
解决方案
User are advised to upgrade to the latest version of software available and apply Hot fix 1403. Please visit here for more information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论