CVE-2018-18328
Description
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on vulnerable installations. The issue results from the lack of proper validation function on 0x6F6A offset user-supplied buffer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A local privilege escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0+ due to untrusted pointer dereference in KERedirect kext allows kernel code execution.
Vulnerability
The vulnerability resides in the KERedirect kernel extension (kext) of Trend Micro Antivirus for Mac (Consumer) version 7.0 (2017) and above. It stems from the lack of proper validation of a user-supplied value at offset 0x6F6A, which is subsequently dereferenced as a pointer without verification [1].
Exploitation
An attacker must first obtain the ability to execute low-privileged code on the target system. The attacker then sends a specially crafted request to the KERedirect kext, supplying a value at offset 0x6F6A that points to attacker-controlled memory. The kext dereferences this pointer without validation, allowing the attacker to control kernel memory operations [1].
Impact
Successful exploitation enables an attacker to execute arbitrary code in kernel context, leading to full privilege escalation. This compromises the confidentiality, integrity, and availability of the system [1].
Mitigation
Trend Micro has addressed this vulnerability. Users should update Trend Micro Antivirus for Mac to the latest version available from the vendor. No workaround is known [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2>=7.0+ 1 more
- (no CPE)range: >=7.0
- (no CPE)range: 7.0 (2017) and above
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/bid/105757mitrevdb-entryx_refsource_BID
- esupport.trendmicro.com/en-US/home/pages/technical-support/1121296.aspxmitrex_refsource_CONFIRM
- esupport.trendmicro.com/solution/ja-jp/1121350.aspxmitrex_refsource_CONFIRM
- www.zerodayinitiative.com/advisories/ZDI-18-1296/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.