Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below have a vulnerability that may allow an malicious user to place malicious files in the same directory, potentially leading to arbitrary remote code execution (RCE) when executed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
trendmicro anti-threat_toolkit |
Try not to save files to your Windows PC called cmd.exe or regedit.exe Deus ex hackina: It took just 10 minutes to find data-divulging demons corrupting Pope's Click to Pray eRosary app
Video A flaw in the Trend Micro Anti-Threat Toolkit can be exploited by hackers to run malware on victims' Windows computers. Bug-hunter John "hyp3rlinx" Page took credit for uncovering CVE-2019-9491, an arbitrary code execution flaw in the security tool. In short, the Trend software can be tricked into executing any old piece of software under the sun, including malware, when it is scanned, provided the filename is cmd.exe or regedit.exe. No, really. "Trend Micro Anti-Threat Toolkit (ATTK) will...