TrendMicro Password Manager Security bug (urgent)
TrendMicro Password Manager Security bug (urgent)
TrendMicro Antivirus for Windows has an integrated a component called Password Manager.
http://www.trendmicro.com/us/home/products/software/password-manager/index.html
This product has a massive security hole that allows both remote and local command execution, as well as exposing all the stored passwords to the internet (even if held in an encrypted format).
This Bug produces the ability for anyone on the internet can easily steal all of your passwords, as well as run code and programs without the user knowing.
How do I test if my version has the vulnerability?
Well luckily it is quite easy, type the below URL into your web browser, if your calculator opens then your version of TrendMicro Antivirus Password Manager has the bug.
https://localhost:49155/api/openUrlInDefaultBrowser?url=c:/windows/system32/calc.exe
What should I do if my version of TrendMicro Antivirus Password Manager has the bug?
You should either update your version asap or you should uninstall it and install another antivirus solution.
Reply
You must be logged in to post a comment.