CVE-2019-9491

Published: Oct 21, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below have a vulnerability that may allow an attacker to place malicious files in the same directory, potentially leading to arbitrary remote code execution (RCE) when executed.

Vendor	Product	Versions
Trend Micro	Trend Micro Anti-Threat Toolkit (ATTK)	affected `Version 1.62.0.1218 and below`

References

https://success.trendmicro.com/solution/000149878

x_refsource_MISC

http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-ANTI-THREAT-TOOLKIT-%28ATTK%29-REMOTE-CODE-EXECUTION.txt

x_refsource_MISC

20191021 Trend Micro Anti-Threat Toolkit <= v1.62.0.1218 / Remote Code Execution 0day

mailing-list

x_refsource_BUGTRAQ

20191022 Trend Micro Anti-Threat Toolkit (ATTK) <= v1.62.0.1218 Remote Code Execution 0day CVE-2019-9491

mailing-list

x_refsource_FULLDISC

20200130 [CVE-2019-20358] CVE-2019-9491 in Trend Micro Anti-Threat Toolkit (ATTK) was NOT properly FIXED

mailing-list

x_refsource_BUGTRAQ

http://packetstormsecurity.com/files/156160/TrendMicro-Anti-Threat-Toolkit-Improper-Fix.html

x_refsource_MISC

20200131 [CVE-2019-20358] CVE-2019-9491 in Trend Micro Anti-Threat Toolkit (ATTK) was NOT properly FIXED

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-9491

Description

Affected Products

References