Discovery of DLL Hijack on Trend Micro AntiVirus | CVE 2018
SECURITY BULLETIN: Trend Micro Security (Consumer) 2019 DLL Hijacking Vulnerability
Vulnerability details: We have 2 scenarios for DLL Hijacking. The first is Trend Micro’s self-protection module is not active immediately after installation or startup, and service & agent applications load DLL without checking the security of loaded files. The second is Trend Micro Installer try load DLL from its current location without checking the security of DLL.
For security reasons, the technical details of PoCs will not be shared.
Applications that cause vulnerability :
List of DLLs that are dynamically tested and succeeded: