Back to search
CVE-2019-20358
Published: Jan 30, 2020
Modified: Aug 5, 2024
PUBLISHED
Description
Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below have a vulnerability that may allow an attacker to place malicious files in the same directory, potentially leading to arbitrary remote code execution (RCE) when executed. Another attack vector similar to CVE-2019-9491 was idenitfied and resolved in version 1.62.0.1228 of the tool.
| Vendor | Product | Versions |
|---|---|---|
Trend Micro | Trend Micro Anti-Threat Toolkit (ATTK) | affected Version 1.62.0.1218 and below |
References
https://success.trendmicro.com/solution/000149878
x_refsource_MISC
https://seclists.org/bugtraq/2020/Jan/55
x_refsource_MISC
20200131 [CVE-2019-20358] CVE-2019-9491 in Trend Micro Anti-Threat Toolkit (ATTK) was NOT properly FIXED
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now