Details of VAR-201502-0459

ID

VAR-201502-0459

CVE

CVE-2014-9641

TITLE

plural Trend Micro Product tmeext.sys Vulnerability written in arbitrary memory area in driver

Trust: 0.8

sources: JVNDB: JVNDB-2014-007857

DESCRIPTION

The tmeext.sys driver before 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222400 IOCTL call. A security vulnerability exists in the tmeext.sys driver version prior to 2.0.0.1015. A local attacker can exploit this vulnerability to write to any memory location and obtain permissions through a specially crafted 0x00222400 IOCTL call

Trust: 2.61

sources: NVD: CVE-2014-9641 // JVNDB: JVNDB-2014-007857 // CNVD: CNVD-2015-01172 // BID: 77709 // IVD: cbe56c58-1e92-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: cbe56c58-1e92-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-01172

AFFECTED PRODUCTS

vendor:	trend micro	model:	tmeext.sys	scope:	lt	version:	2.0.0.1015	Trust: 1.4
vendor:	trendmicro	model:	tmeext.sys	scope:	lte	version:	2.0.0.1014	Trust: 1.0
vendor:	trendmicro	model:	tmeext.sys	scope:	eq	version:	2.0.0.1014	Trust: 0.9
vendor:	tmeext sys	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: cbe56c58-1e92-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-01172 // BID: 77709 // JVNDB: JVNDB-2014-007857 // CNNVD: CNNVD-201502-123 // NVD: CVE-2014-9641

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2014-9641
value:	HIGH
Trust: 1.0
NVD:	CVE-2014-9641
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2015-01172
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201502-123
value:	HIGH
Trust: 0.6
IVD:	cbe56c58-1e92-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

nvd@nist.gov:	CVE-2014-9641
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2015-01172
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	cbe56c58-1e92-11e6-abef-000c29c66e3d
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

sources: IVD: cbe56c58-1e92-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-01172 // JVNDB: JVNDB-2014-007857 // CNNVD: CNNVD-201502-123 // NVD: CVE-2014-9641

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.8

sources: JVNDB: JVNDB-2014-007857 // NVD: CVE-2014-9641

THREAT TYPE

local

Trust: 0.9

sources: BID: 77709 // CNNVD: CNNVD-201502-123

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201502-123

CONFIGURATIONS

sources: JVNDB: JVNDB-2014-007857

PATCH

title:	Arbitrary Write Privilege Escalation Vulnerability on tmeext.sys	url:	http://esupport.trendmicro.com/en-us/home/pages/technical-support/1106233.aspx	Trust: 0.8
title:	Patch for multiple Trend Micro products tmeext.sys driver privilege elevation vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/55406	Trust: 0.6

sources: CNVD: CNVD-2015-01172 // JVNDB: JVNDB-2014-007857

EXTERNAL IDS

db:	NVD	id:	CVE-2014-9641	Trust: 3.5
db:	EXPLOIT-DB	id:	35962	Trust: 2.5
db:	OSVDB	id:	115514	Trust: 1.6
db:	CNVD	id:	CNVD-2015-01172	Trust: 0.8
db:	CNNVD	id:	CNNVD-201502-123	Trust: 0.8
db:	JVNDB	id:	JVNDB-2014-007857	Trust: 0.8
db:	EXPLOITDB	id:	35962	Trust: 0.6
db:	BID	id:	77709	Trust: 0.3
db:	IVD	id:	CBE56C58-1E92-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: cbe56c58-1e92-11e6-abef-000c29c66e3d // CNVD: CNVD-2015-01172 // BID: 77709 // JVNDB: JVNDB-2014-007857 // CNNVD: CNNVD-201502-123 // NVD: CVE-2014-9641

REFERENCES

url:	http://esupport.trendmicro.com/en-us/home/pages/technical-support/1106233.aspx	Trust: 2.5
url:	http://www.greyhathacker.net/?p=818	Trust: 1.9
url:	http://www.exploit-db.com/exploits/35962	Trust: 1.9
url:	http://www.osvdb.org/115514	Trust: 1.6
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9641	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-9641	Trust: 0.8
url:	http://www.exploit-db.com/exploits/35962/	Trust: 0.6

sources: CNVD: CNVD-2015-01172 // BID: 77709 // JVNDB: JVNDB-2014-007857 // CNNVD: CNNVD-201502-123 // NVD: CVE-2014-9641

CREDITS

Unknown

Trust: 0.3

sources: BID: 77709

SOURCES

db:	IVD	id:	cbe56c58-1e92-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2015-01172
db:	BID	id:	77709
db:	JVNDB	id:	JVNDB-2014-007857
db:	CNNVD	id:	CNNVD-201502-123
db:	NVD	id:	CVE-2014-9641

LAST UPDATE DATE

2025-04-13T23:18:11.733000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2015-01172	date:	2015-02-13T00:00:00
db:	BID	id:	77709	date:	2015-02-06T00:00:00
db:	JVNDB	id:	JVNDB-2014-007857	date:	2015-02-16T00:00:00
db:	CNNVD	id:	CNNVD-201502-123	date:	2015-02-09T00:00:00
db:	NVD	id:	CVE-2014-9641	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	IVD	id:	cbe56c58-1e92-11e6-abef-000c29c66e3d	date:	2015-02-13T00:00:00
db:	CNVD	id:	CNVD-2015-01172	date:	2015-02-14T00:00:00
db:	BID	id:	77709	date:	2015-02-06T00:00:00
db:	JVNDB	id:	JVNDB-2014-007857	date:	2015-02-16T00:00:00
db:	CNNVD	id:	CNNVD-201502-123	date:	2015-02-09T00:00:00
db:	NVD	id:	CVE-2014-9641	date:	2015-02-06T15:59:08.757