Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2014-9641

Published: 06/02/2015 Updated: 09/02/2015
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Tmeext.sys

Vulnerability Summary

The tmeext.sys driver prior to 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222400 IOCTL call.

Vulnerable Product Search on Vulmon Subscribe to Product

trendmicro tmeext.sys

Exploits

Exploit DB: Trend Micro 8.0.1133 (Multiple Products) - Local Privilege Escalation
/* Exploit Title - Trend Micro Multiple Products Arbitrary Write Privilege Escalation Date - 31st January 2015 Discovered by - Parvez Anwar (@parvezghh) Vendor Homepage - wwwtrendmicrocouk/ Tested Version - 801133 Driver Version - 2001009 - tmeextsys Tested on OS - 32bit Windows XP SP3 OSVDB - ...

References

CWE-264http://www.greyhathacker.net/?p=818http://www.osvdb.org/115514http://www.exploit-db.com/exploits/35962http://esupport.trendmicro.com/en-us/home/pages/technical-support/1106233.aspxhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/35962/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook