Zer0B4By

**Name of the Vulnerable Software and Affected Versions** Trend Micro OfficeScan versions 11.0 and XG **Description** The issue allows local attackers to execute arbitrary code and escalate privileges to resources normally reserved for the kernel on vulnerable installations by exploiting tmwfp.sys. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit the issue. **Recommendations** For Trend Micro OfficeScan versions 11.0 and XG, consider disabling the tmwfp.sys driver as a temporary workaround until a patch is available. Restrict access to the vulnerable system to minimize the risk of exploitation.