[Vulnerability Confirmation] TmComm Local Privilege Escalation Vulnerability

Solution ID:	EN-1034432
Product:	HouseCall; HouseCall Server Edition - 6.5; Trend Micro AntiVirus plus AntiSpyware - 2007
Operating System:	N/A
Published:	7/18/2009 2:00 AM

Problem:


A vulnerability that affects the Anti-Rootkit Common Module (RCM) may allow the exploit of security permissions so that arbitrary memory may be modified or arbitrary code may be executed.

This vulnerability affects the following products:

•	Trend Micro PC-cillin Internet Security 2007
•	Trend Micro AntiVirus plus AntiSpyware 2007
•	HouseCall Server Edition 6.5
•	HouseCall Server Edition 6.6
•	HouseCall – FREE online virus scanner
•	Trend Micro Antivirus 2007
•	Trend Micro Anti-Spyware for SMB 3.2 SP1
•	Trend Micro Anti-Spyware for Consumer 3.5
•	Trend Micro Anti-Spyware for Enterprise 3.0 SP2
•	Client / Server / Messaging Security for SMB 3.5
•	Damage Cleanup Services 3.2

Solution:

Public

To address the vulnerability, update your RCM to version 1.600-1052. If you have set your product to Automatic Update, this will be done immediately. Otherwise, perform a manual update using your product's Update Now function

If you suspect that you may have been affected by this vulnerability, contact your Technical Account Manager or Trend Micro Technical Support Services in your region.

Reference: Ruben Santamarta (iDefense Vulnerability Contributor Program)

Print This Solution

Rate this Solution

Did this article help you?

Yes No

Comments:

This form uses an automated system and does not provide feedback.