JVNVU#92641706
Trend Micro Password Manager vulnerable to privilege escalation
Overview
Trend Micro Incorporated has released a security update for Trend Micro Password Manager.
Products Affected
- Trend Micro Password Manager for Windows 5.0.0.1266 and earlier
Description
Trend Micro Incorporated has released a security update for Trend Micro Password Manager.
Impact
A non-administrative user of the system where the affected product is installed may obtain the administrative privilege. As a result, arbitrary code may be executed on the system.
For more information, refer to the information provided by the developer.
Solution
Update the Software
Update the Software to the latest version according to the information provided by the developer.
The update that addresses this vulnerability is available and is automatically applied through the product’s automatic update mechanism.
Vendor Status
| Vendor | Link |
| Trend Micro Incorporated | Security Bulletin: Trend Micro Password Manager Link Following Privilege Escalation Vulnerability |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Credit
Trend Micro Incorporated reported the vulnerability to JPCERT/CC to notify users of the solutions through JVN.