SHARE
CORE IMPACT v10.5 - Exploits Update (Tue Nov 09 2010)
Trend Micro Titanium Maximum Security TMTDI.SYS Privilege Escalation Exploit
Exploits/Local [Windows]
• Tue Nov 09 2010
This module exploits a privilege escalation vulnerability in Trend Micro Titanium Maximum Security tmtdi.sys driver. The vulnerable driver trusts a dword passed from user mode via IOCTL 0x220404, and interprets it as a function pointer without performing validations. This vulnerability allows unprivileged local users to execute code with SYSTEM privileges.
Exploits Vulnerabiltiy: NOCVE-9999-45910