CVE-2018-18333

HIGH

Trend Micro Antivirus+ Security < 15.0.0.1163 - DLL Hijacking

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-18333. PoCs published by mrx04programmer.

AI-analyzed exploit summary This repository contains a Python script that generates a malicious DLL using msfvenom for CVE-2018-18333, which is a vulnerability in Windows. The script automates the creation of a reverse TCP meterpreter payload and optionally starts a Metasploit handler.

Description

A DLL hijacking vulnerability in Trend Micro Security 2019 (Consumer) versions below 15.0.0.1163 and below could allow an attacker to manipulate a specific DLL and escalate privileges on vulnerable installations.

Exploits (1)

nomisec WORKING POC 1 stars
by mrx04programmer · poc
https://github.com/mrx04programmer/Dr.DLL-CVE-2018-18333

This repository contains a Python script that generates a malicious DLL using msfvenom for CVE-2018-18333, which is a vulnerability in Windows. The script automates the creation of a reverse TCP meterpreter payload and optionally starts a Metasploit handler.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Windows (specific version not specified)
No auth needed
Prerequisites: Metasploit installed · Python installed
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Scores

CVSS v3 7.8
EPSS 0.0182
EPSS Percentile 76.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-426
Status published
Products (4)
trendmicro/antivirus_\+_security < 15.0.0.1163
trendmicro/internet_security < 15.0.0.1163
trendmicro/maximum_security < 15.0.0.1163
trendmicro/premium_security < 15.0.0.1163
Published Feb 05, 2019
Tracked Since Feb 18, 2026