CVE-2018-18327
Description
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. The issue results from the lack of proper validation function on 0x6eDC offset user-supplied buffer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A local privilege escalation vulnerability in Trend Micro Antivirus for Mac due to an untrusted pointer dereference in the KERedirect kernel extension allows attackers to gain kernel code execution.
Vulnerability
The vulnerability resides in the KERedirect kernel extension (kext) of Trend Micro Antivirus for Mac (Consumer) version 7.0 (2017) and above [1]. The issue is an untrusted pointer dereference at offset 0x6eDC of a user-supplied buffer. The kext fails to properly validate the user-supplied value before dereferencing it as a pointer, allowing an attacker to control the pointer target.
Exploitation
Exploitation requires the attacker to first obtain the ability to execute low-privileged code on the target system [1]. With that capability, the attacker can craft a malicious buffer and pass it to the KERedirect kext via the vulnerable IOCTL or similar interface. The lack of validation on the pointer at offset 0x6eDC causes the kernel to dereference an attacker-controlled address, leading to arbitrary kernel memory access.
Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of the kernel, resulting in full privilege escalation to root or kernel level [1]. This compromises the confidentiality, integrity, and availability of the system.
Mitigation
Trend Micro has released a security update to address this vulnerability. Users should update their Trend Micro Antivirus for Mac to the latest version available [1]. No workarounds are documented; applying the vendor patch is the recommended mitigation.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2>=7.0+ 1 more
- (no CPE)range: >=7.0
- (no CPE)range: 7.0 (2017) and above
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/bid/105757mitrevdb-entryx_refsource_BID
- esupport.trendmicro.com/en-US/home/pages/technical-support/1121296.aspxmitrex_refsource_CONFIRM
- esupport.trendmicro.com/solution/ja-jp/1121350.aspxmitrex_refsource_CONFIRM
- www.zerodayinitiative.com/advisories/ZDI-18-1295/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.