CVE-2007-0856 in PC-Cillin Internet Securityinfo

Summary

TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\.\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

02/08/2007

Disclosure

02/08/2007

Moderation

VulDB entry created

Entries

VDB-2908 (1)

CPE

ready

CWE

CWE-275 (Unconfirmed)

CVSS

8.0

EPSS

0.00150

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0856
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0856
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0856/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!