DLL Side-Loading Vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG: Code Execution and Endpoint Protection Disabling

DLL Side-Loading Vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG: Code Execution and Endpoint Protection Disabling

CVE-2019-9492 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

A DLL side-loading vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow an authenticated attacker to gain code execution and terminate the product's process - disabling endpoint protection. The attacker must have already gained authentication and have local access to the vulnerable system.

Learn more about our Cis Benchmark Audit For Microsoft Office.