ATTK of the Pwns: Trend Micro's antivirus tools 'will run malware – if its filename is cmd.exe'
https://www.theregister.co.uk/2019/10/21/flaw_trend_micro/
Video A flaw in the Trend Micro Anti-Threat Toolkit can be exploited by hackers to run malware on victims' Windows computers.
Bug-hunter John "hyp3rlinx" Page took credit for uncovering CVE-2019-9491, an arbitrary code execution flaw in the security tool.