Arbitrary Remote Code Execution Vulnerability in Trend Micro Anti-Threat Toolkit (ATTK) Versions 1.62.0.1218 and Below

Arbitrary Remote Code Execution Vulnerability in Trend Micro Anti-Threat Toolkit (ATTK) Versions 1.62.0.1218 and Below

CVE-2019-9491 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below have a vulnerability that may allow an attacker to place malicious files in the same directory, potentially leading to arbitrary remote code execution (RCE) when executed.

Learn more about our Web Application Penetration Testing UK.