ATTK of the Pwns: Trend Micro's antivirus tools 'will run malware ā if its filename is cmd.exe'
Found on The Register on Wednesday, 23 October 2019
In short, the Trend software can be tricked into executing any old piece of software under the sun, including malware, when it is scanned, provided the filename is cmd.exe or regedit.exe. No, really.
In other words, your Trend antivirus software can be tricked into running a virus. That'sā¦ not good. It means if you can save a file on someone's PC as cmd.exe or regedit.exe, via a download or email or something like that, and they're running ATTK, you can now run malicious code on their machine.
That's such a giant bug that it is really surprising that nobody ever noticed it before.