CVE-2019-14687

Description

A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14684.

Affected products

• Trend Micro / Trend Micro Password Manager2019 (5.0) – 2019 (5.0)

References

• MISChttps://medium.com/%40infiniti_css/fa839acaad59
• MISChttps://esupport.trendmicro.com/en-us/home/pages/technical-support/1123396.aspx