Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs
September 5, 2022Rewterz Threat Advisory – Multiple Trend Micro Maximum Security Vulnerabilities
September 5, 2022Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs
September 5, 2022Rewterz Threat Advisory – Multiple Trend Micro Maximum Security Vulnerabilities
September 5, 2022Severity
High
Analysis Summary
CVE-2022-38764
Trend Micro HouseCall could allow a local authenticated attacker to gain elevated privileges on the system, caused by incorrect permission assignment in the product installer. By sending a specially-crafted request, an attacker could exploit this vulnerability to escalate privileges and execute arbitrary code in the context of an administrator.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-38764
Affected Vendors
Trend Micro
Affected Products
Trend Micro HouseCall 1.62.1.1133
Remediation
Refer to Trend Micro Security for patch, upgrade or suggested workaround information.