Trend Micro OfficeScan TMTDI Module Local Privilege Escalation

This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.


Synopsis :

The remote host contains an application that is affected by a local
privilege escalation issue.

Description :

The remote host is either running Trend Micro OfficeScan or Trend
Micro OfficeScan Client. The TMTDI module included with the installed
version is affected by an unspecified vulnerability, which could allow
a local attacker to execute arbitrary code on the remote system.

See also :

http://www.trendmicro.com/ftp/documentation/readme/Readme_2820.txt
http://www.trendmicro.com/ftp/documentation/readme/Readme_1161.txt

Solution :

- v10.0 - Upgrade to Service Pack 1 Patch 2, and apply
critical patch 2820.

- v10.5 - Apply critical patch 1161.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 5.3
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 50831 ()

Bugtraq ID: 45034

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now