Back to search
CVE-2017-14088
Published: Oct 5, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Memory Corruption Privilege Escalation vulnerabilities in Trend Micro OfficeScan 11.0 and XG allows local attackers to execute arbitrary code and escalate privileges to resources normally reserved for the kernel on vulnerable installations by exploiting tmwfp.sys. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit the vulnerability.
| Vendor | Product | Versions |
|---|---|---|
Trend Micro | Trend Micro OfficeScan | affected 11.0, XG (12.0) |
References
https://success.trendmicro.com/solution/1118372
x_refsource_CONFIRM
101070
vdb-entry
x_refsource_BID
http://www.zerodayinitiative.com/advisories/ZDI-17-828
x_refsource_MISC
1039500
vdb-entry
x_refsource_SECTRACK
http://www.zerodayinitiative.com/advisories/ZDI-17-829
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now