Exposed dangerous method or function in Password Manager for Windows

#VU54423 Exposed dangerous method or function in Password Manager for Windows

Published: 2021-06-28 | Updated: 2021-07-05

Vulnerability identifier: #VU54423

Vulnerability risk: High

CVSSv3.1: 8.6 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-32462

CWE-ID: CWE-749

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Password Manager for Windows
Client/Desktop applications / Other client software

Vendor: Trend Micro

Description

The vulnerability allows a remote user to compromise the affected system.

the vulnerability exists due to exposure of dangerous function. A remote client can manipulate the registry and escalate privileges to SYSTEM on the affected installations.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Password Manager for Windows: 3.8.0.1103 - 5.0.1058

External links
http://helpcenter.trendmicro.com/en-us/article/TMKA-10388
http://www.zerodayinitiative.com/advisories/ZDI-21-774/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Trend Micro Password Manager for Windows