Vulnerability Description
A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trendmicro | Antivirus \+ Security | <= 12.0.1191 |
| Trendmicro | Internet Security | <= 12.0.1191 |
| Trendmicro | Maximum Security | <= 12.0.1191 |
| Trendmicro | Premium Security | <= 12.0.1191 |
| Microsoft | Windows | - |
| Trendmicro | Officescan | 11.0 |
| Trendmicro | Officescan Monthly | 11.0 |
Related Weaknesses (CWE)
References
- http://esupport.trendmicro.com/support/vb/solution/ja-jp/1120144.aspxVendor Advisory
- https://esupport.trendmicro.com/en-US/home/pages/technical-support/1120237.aspxVendor Advisory
- http://esupport.trendmicro.com/support/vb/solution/ja-jp/1120144.aspxVendor Advisory
- https://esupport.trendmicro.com/en-US/home/pages/technical-support/1120237.aspxVendor Advisory
FAQ
What is CVE-2018-3608?
CVE-2018-3608 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A vulnerability in Trend Micro Maximum Security's (Consumer) 2018 (versions 12.0.1191 and below) User-Mode Hooking (UMH) driver could allow an attacker to create a specially crafted packet that could ...
How severe is CVE-2018-3608?
CVE-2018-3608 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-3608?
Check the references section above for vendor advisories and patch information. Affected products include: Trendmicro Antivirus \+ Security, Trendmicro Internet Security, Trendmicro Maximum Security, Trendmicro Premium Security, Microsoft Windows.