March 22, 2024
Severity High Analysis Summary Ducktail Malware is a malicious program designed by hackers to infiltrate computers and networks globally. Ducktail malware is typically delivered through a […]
Rewterz Threat Alert – APT32 Ocean Lotus – Active IOCs
July 30, 2021
Rewterz Threat Advisory –CVE-2021-36015 – Adobe Media Encoder Information Disclosure Vulnerability
August 2, 2021
Rewterz Threat Alert – APT32 Ocean Lotus – Active IOCs
July 30, 2021
Rewterz Threat Advisory –CVE-2021-36015 – Adobe Media Encoder Information Disclosure Vulnerability
August 2, 2021
Severity
High
Analysis Summary
CVE-2021-32464
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Worry-Free Business Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Worry-Free Business Services Agent. The issue results from incorrect permissions set on a resource used by the service. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.
CVE-2021-32465
This vulnerability allows remote attackers to bypass authentication on affected installations of Trend Micro Apex One. Authentication as a low-privileged Windows domain user is required to exploit this vulnerability. The specific flaw exists within the product patching functionality. When applying a patch to the product, the permissions on some files are not properly preserved. An attacker can leverage this vulnerability to bypass authentication on the system.
Impact
- Bypass Security
- Privilege Escalation
Affected Vendors
Trend Micro
Affected Products
- Trend Micro Apex One
- Trend Micro Worry-Free Business Security
Remediation
Trend Micro has issued an update to correct this vulnerability. More details can be found at: