Positive Technologies Research Team has discovered multiple privilege escalation vulnerabilities in Trend Micro products. The IOCTL handler in tmactmon.sys uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate buffer data associated with the Irp object, which allows local users to gain SYSTEM privileges.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76242/PT-2009-09.txt
Source: https://packetstormsecurity.com/files/76242/Trend-Micro-Internet-Security-Pro-2009-Privilege-Escalation.html