Arbitrary Memory Write Vulnerability in Trend Micro Antivirus

CVE-2014-9641 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The tmeext.sys driver before 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222400 IOCTL call.

Learn more about our User Device Pen Test.