|
 |
|
McAfee VirusScan System Scan Privilege Escalation Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA12506
|
|
|
Release Date:
|
2004-09-14
|
|
Last Update:
|
2004-09-27
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Privilege escalation
|
|
Where:
|
Local system
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | McAfee VirusScan 4.x
|
| | CVE reference: | CVE-2004-0831 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Ian Vitek has reported a vulnerability in McAfee VirusScan, which can be exploited by malicious, local users to gain escalated privileges on a vulnerable system.
The vulnerability is caused due to the process not dropping its privileges before accessing the "System Scan" properties via the system tray, which makes it possible to execute an arbitrary program with these privileges.
Successful exploitation allows execution of arbitrary commands with SYSTEM privileges.
The vulnerability has been reported in version 4.5.1. Prior versions may also be affected.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Reportedly, the vulnerability does not affect later versions.
Provided and/or discovered by:
Discovered by:
Ian Vitek
Reported by:
iDEFENSE.
Changelog:
2004-09-27: Added CVE reference.
Original Advisory:
http://www.idefense.com/application/poi/display?id=140&type=vulnerabilities
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
5 Related Secunia Security Advisories
|
|
|
1. McAfee SecurityCenter "mcinsctl.dll" ActiveX File Overwrite Vulnerability
|
|
2. McAfee Multiple Products LHA File Handling Buffer Overflow
|
|
3. McAfee Anti-Virus Zip Archive Virus Detection Bypass Vulnerability
|
|
4. Multiple AV Products bzip2 Processing Denial of Service Vulnerability
|
|
5. McAfee VirusScan privilege escalation
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
