CVE-2018-15367
Description
A ctl_set KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A privilege escalation vulnerability in Trend Micro Antivirus for Mac allows local attackers to execute arbitrary kernel code via an untrusted pointer dereference.
Vulnerability
The vulnerability resides in the ctl_set KERedirect kernel extension (kext) of Trend Micro Antivirus for Mac (Consumer) versions 7.0 (2017) and above. The issue stems from the lack of proper validation of a user-supplied value before it is dereferenced as a pointer, leading to an untrusted pointer dereference condition [1].
Exploitation
An attacker must first obtain the ability to execute low-privileged code on the target system. Exploitation does not require any additional privileges or user interaction beyond the initial low-privileged execution. The attacker can trigger the vulnerability by providing a crafted value to the affected function, causing the kernel to dereference an untrusted pointer [1].
Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of the kernel, resulting in privilege escalation and full compromise of the system. This could lead to unauthorized access to sensitive data, installation of persistent malware, or other malicious activities with highest system privileges [1].
Mitigation
As of the publication date, no official patch or fixed version has been released by Trend Micro. Users are advised to limit local access to trusted users and monitor for vendor updates. No workarounds have been disclosed in the available references [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2>=7.0 (2017)+ 1 more
- (no CPE)range: >=7.0 (2017)
- (no CPE)range: 7.0 (2017) and above
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/bid/105757mitrevdb-entryx_refsource_BID
- esupport.trendmicro.com/en-US/home/pages/technical-support/1121296.aspxmitrex_refsource_CONFIRM
- esupport.trendmicro.com/solution/ja-jp/1121350.aspxmitrex_refsource_CONFIRM
- www.zerodayinitiative.com/advisories/ZDI-18-1294/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.