Solution
Vulnerability Details
Trend Micro has released an update to resolve this issue and customers should receive the update automatically as long as they are connected to the Internet.
| Product Versions | Update Build | Platform |
|---|---|---|
| All 2016 Trend Micro Security Products (version 10) | 10.0.1288 | Windows OS |
This update resolves vulnerabilities in Trend Micro Security where a malicious actor using specifically crafted malware that could potentially manipulate a key .dll file to exclude a malware’s desired file path causing Trend Micro Security’s real-time or on-demand scan not to detect it.
Trend Micro has received no reports nor is aware of any actual attacks against the affected products related to this vulnerability at this time.
Mitigating Factors
None identified. Customers are advised to ensure they always have the latest version of the program.
Acknowledgement
Trend Micro would like to thank Wayne Low (@x9090) of FortiGuard Labs, for responsibly disclosing this issue and working with Trend Micro to help protect our customers.
Additional Assistance
Customers who have questions are encouraged to contact Trend Micro Technical Support for further assistance.
