[Hotfix] Attackers can exploit Tmtdi.sys to execute an arbitrary code within the kernel

This article shows you what to do when Tmtdi.sys has a potential vulnerability that attackers can use to execute an arbitrary code within the kernel.
To resolve the issue, do the following steps:
  1. Log in using an account with administrator privileges on the computer where you installed your Trend Micro program.
    Note: If you have installed software on your computer before, then you probably have these privileges.
  2. Download the hotfix to your desktop by clicking your program below:
  3. Unzip the file that you downloaded, then double-click it.
  4. Select I accept the terms of the license agreement, then click Next.
  5. Browse through the readme file, then click Install.
  6. Click Yes when the Module Update window appears.
    The message “Installation successful!” will appear after installing the hotfix.
Note: The hotfix will check if IRP-RequestorMode is on KernelMode to avoid exploitation from the user mode process.
Video Tutorial

Applies To: Titanium AntiVirus + - 2011;Titanium Internet Security - 2011;Titanium Maximum Security - 2011;Titanium Smart Surfing for PC - 2011;Trend Micro Internet Security - 2009;Trend Micro Internet Security for Dell - 16.6;

Last Updated: Nov. 22, 2015 11:33 PM (PST)
Solution ID: 1057336