Symlink Abuse in Trend Micro Security 2021: Exploiting PC Health Checkup for DoS Attacks

Symlink Abuse in Trend Micro Security 2021: Exploiting PC Health Checkup for DoS Attacks

CVE-2021-44023 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

A link following denial-of-service (DoS) vulnerability in the Trend Micro Security (Consumer) 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to create symlinks that would allow modification of files which could lead to a denial-of-service.

Learn more about our Web Application Penetration Testing UK.