CVE-2018-15367: Trend Micro Anti-Virus ctl_set KERedirect Untrusted Pointer Dereference Privilege Escalation Vulnerability
First published: Tue Oct 23 2018(Updated: )
A ctl_set KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Credit: security@trendmicro.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Trendmicro Antivirus For Mac 2017 | >=7.0<=7.1.1124 | |
| Trendmicro Antivirus For Mac 2018 | >=8.0<=8.0.3082 | |
| Trendmicro Antivirus For Mac 2019 | >=9.0<=9.0.1356 | |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/type
- agent/first-publish-date
- agent/description
- agent/severity
- agent/tags
- agent/event
- agent/softwarecombine
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-18-1294
- alias/ZDI-CAN-6369
- alias/CVE-2018-15367
- agent/software-canonical-lookup
- vendor/trendmicro
- canonical/trendmicro antivirus for mac 2017
- version/trendmicro antivirus for mac 2017/7.0
- version/trendmicro antivirus for mac 2017/7.1.1124
- canonical/trendmicro antivirus for mac 2018
- version/trendmicro antivirus for mac 2018/8.0
- version/trendmicro antivirus for mac 2018/8.0.3082
- canonical/trendmicro antivirus for mac 2019
- version/trendmicro antivirus for mac 2019/9.0
- version/trendmicro antivirus for mac 2019/9.0.1356
- vendor/trend micro
- canonical/trend micro anti-virus