A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 (v160 and 2019 (v15) consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vulnerable system.
References
Link | Resource |
---|---|
http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-SECURITY-CONSUMER-PERSISTENT-ARBITRARY-CODE-EXECUTION.txt | Exploit Third Party Advisory |
https://esupport.trendmicro.com/en-us/home/pages/technical-support/1124099.aspx | Vendor Advisory |
https://seclists.org/bugtraq/2020/Jan/28 | Exploit Issue Tracking Mailing List Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-01-17 16:15
Updated : 2021-07-21 04:39
NVD link : CVE-2019-20357
Mitre link : CVE-2019-20357
JSON object : View
CWE
CWE-428
Unquoted Search Path or Element
Products Affected
trendmicro
- antivirus_\+_security_2020
- premium_security_2019
- maximum_security_2020
- premium_security_2020
- maximum_security_2019
- antivirus_\+_security_2019
- internet_security_2020
- internet_security_2019
microsoft
- windows