CVE-2010-5179

Name of the Vulnerable Software and Affected Versions Trend Micro Internet Security Pro 2010 version 17.50.1647.0000

Description A race condition issue allows local users to bypass kernel-mode hook handlers and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection. This is achieved via certain user-space memory changes during hook-handler execution, also referred to as an argument-switch attack or a KHOBE attack. Note that this issue is disputed by some third parties as it is a flaw in a protection mechanism for situations where a crafted program has already begun to execute.

Recommendations For Trend Micro Internet Security Pro 2010 version 17.50.1647.0000, consider applying additional security measures to prevent the execution of crafted programs, as the issue is related to the bypassing of kernel-mode hook handlers. At the moment, there is no information about a newer version that contains a fix for this vulnerability.