CVE-2007-0856

Published: Feb 8, 2007Modified: Apr 23, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

TmComm.sys 1.5.0.1052 in the Trend Micro Anti-Rootkit Common Module (RCM), with the VsapiNI.sys 3.320.0.1003 scan engine, as used in Trend Micro PC-cillin Internet Security 2007, Antivirus 2007, Anti-Spyware for SMB 3.2 SP1, Anti-Spyware for Consumer 3.5, Anti-Spyware for Enterprise 3.0 SP2, Client / Server / Messaging Security for SMB 3.5, Damage Cleanup Services 3.2, and possibly other products, assigns Everyone write permission for the \\.\TmComm DOS device interface, which allows local users to access privileged IOCTLs and execute arbitrary code or overwrite arbitrary memory in the kernel context.

Affected (10)

Products: Trend Micro: Client Server Messaging Security, Damage Cleanup Services, Pc Cillin Internet Security, Tmcomm.sys, Trend Micro Antirootkit Common Module, Trend Micro Antispyware, Trend Micro Antivirus, Vsapini.sys

Trend Micro

8 products

Client Server Messaging Security

Damage Cleanup Services

Pc Cillin Internet Security

Tmcomm.sys

Trend Micro Antirootkit Common Module

Trend Micro Antispyware

Trend Micro Antivirus

Vsapini.sys

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Trend Micro Client Server Messaging Security	Version 3.5
Trend Micro Damage Cleanup Services	Version 3.2
Trend Micro Pc Cillin Internet Security	Version 2007
Trend Micro Tmcomm.sys	Version 1.5.1052
Trend Micro Trend Micro Antirootkit Common Module	All versions
Trend Micro Trend Micro Antispyware	Version 3.0_sp2
Trend Micro Trend Micro Antispyware	Version 3.2_sp1
Trend Micro Trend Micro Antispyware	Version 3.5
Trend Micro Trend Micro Antivirus	Version 2007
Trend Micro Vsapini.sys	Version 3.320.1003