Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Trend Micro Internet Security Pro 2009 Priviliege Escalation PoC
# Published : 2009-03-30
# Author : b1@ckeYe
# Previous Title : UltraISO <= 9.3.3.2685 CCD/IMG Universal Buffer Overflow Exploit
# Next Title : PowerCHM 5.7 (hhp) Local Buffer Overflow Exploit

Trend Micro Internet Security Pro 2009 tmactmon.sys Priviliege Escalation PoC.
by b1@ckeYe

The vulnerability is caused due to the IOCTL handler of the "tmactmon.sys" 
driver improperly processing user space parameters. This exploit execute 
arbitrary code in kernel space via a specially crafted IOCTL.

untested: http://exploit-db.com/sploits/2009-trendmicro_local_expl_0day.zip

# www.Syue.com [2009-03-30]