CVE-2014-9641

Trend Micro Antivirus <2.0.0.1015 - Privilege Escalation

Title source: llm

Description

The tmeext.sys driver before 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222400 IOCTL call.

Exploits (1)

exploitdb WORKING POC

by Parvez Anwar · clocalwindows

https://www.exploit-db.com/exploits/35962

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://esupport.trendmicro.com/en-us/home/pages/technical-support/1106233.aspx

[Exploit] http://www.exploit-db.com/exploits/35962

[Exploit] http://www.greyhathacker.net/?p=818

[Third Party Advisory, VDB Entry] http://www.osvdb.org/115514

Scores

EPSS 0.0053

EPSS Percentile 67.1%

Details

CWE

CWE-264

Status published

Products (1)

trendmicro/tmeext.sys < 2.0.0.1014

Published Feb 06, 2015

Tracked Since Feb 18, 2026