Vigil@nce - Trend Micro AntiVirus: privilege escalation via tmeext.sys
February 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can call an ioctl of tmeext.sys installed by Trend
Micro, in order to escalate his privileges.
Impacted products: Trend Micro Internet Security, Trend Micro
Titanium
Severity: 2/4
Creation date: 06/02/2015
DESCRIPTION OF THE VULNERABILITY
The Trend Micro AntiVirus product installs the tmeext.sys driver.
However, the ioctl 0x00222400 can be used by a local user to
escalate his privileges. Technical details are unknown.
An attacker can therefore call an ioctl of tmeext.sys installed by
Trend Micro, in order to escalate his privileges.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Trend-Micro-AntiVirus-privilege-escalation-via-tmeext-sys-16127