CVE-2020-15602

Name of the Vulnerable Software and Affected Versions Trend Micro Secuity 2020 versions 16.0.0.1146 and below

Description An untrusted search path remote code execution issue could allow an attacker to run arbitrary code on a vulnerable system. The Trend Micro installer tries to load DLL files from its current directory, which could allow an arbitrary DLL to be loaded with the same privileges as the installer if run as Administrator. User interaction is required to exploit the issue, where the target must open a malicious directory or device.

Recommendations For versions 16.0.0.1146 and below, consider restricting the privileges of the Trend Micro installer to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid running the installer as Administrator. Additionally, be cautious when opening directories or devices from untrusted sources to reduce the risk of loading malicious DLL files. At the moment, there is no information about a newer version that contains a fix for this issue.