TITLE: Trend Micro PC-cillin Internet Security Insecure File Permission SECUNIA ADVISORY ID: SA18044 VERIFY ADVISORY: http://secunia.com/advisories/18044/ CRITICAL: Less critical IMPACT: Security Bypass, Privilege escalation WHERE: Local system SOFTWARE: Trend Micro PC-cillin Internet Security 2005 http://secunia.com/product/4708/ DESCRIPTION: A security issue has been reported in Trend Micro PC-cillin Internet Security, which can be exploited by malicious, local users to bypass certain security restrictions or gain escalated privileges. The vulnerability is caused due to insecure default file permissions being set on the installed files. This allows any user on the system to remove the files or replace them with malicious binaries. Successful exploitation allows disabling the protection or execution of arbitrary code with SYSTEM privileges. The security issue has been reported in Trend Micro PC-cillin Internet Security 2005 version 12.00 build 1244. Other versions may also be affected. SOLUTION: The security issue has reportedly been fixed in version 12.4. PROVIDED AND/OR DISCOVERED BY: Discovered by anonymous and reported via iDEFENSE. ORIGINAL ADVISORY: iDEFENSE: http://www.idefense.com/application/poi/display?id=351&type=vulnerabilities ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------