Vulnerabilities > Trend Micro > Scan Engine > Medium

DATE CVE VULNERABILITY TITLE RISK
2007-10-30 CVE-2007-4277 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Trend Micro Pc-Cillin Internet Security 2007 and Scan Engine
The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) for the \\.\Tmfilter device, which allows local users to send arbitrary content to the device via the IOCTL functionality.
local
low complexity
trend-micro CWE-119
6.6