|
 |
|
McAfee SecurityCenter "mcinsctl.dll" ActiveX File Overwrite Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA18169
|
|
|
Release Date:
|
2005-12-21
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
Manipulation of data
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | McAfee SecurityCenter 6.x
McAfee VirusScan 4.x
McAfee VirusScan 8.x/2004
McAfee VirusScan 9.x/2005
McAfee VirusScan Professional 7.x
McAfee VirusScan Professional 8.x
|
| | CVE reference: | CVE-2005-3657 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Peter Vreugdenhil has reported a vulnerability in McAfee SecurityCenter, which potentially can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to an error in restricting the browser domain in which the "mcinsctl.dll" ActiveX control can be instantiated. The control contains the "MCINSTALL.McLog" object that can be used to write to a log file. This can be exploited to create or append to arbitrary files, potentially allowing arbitrary code execution by creating files in the user's startup folder.
Successful exploitation requires that the user is e.g. tricked into visiting a malicious website.
The vulnerability has been reported in "mcinsctl.dll" version 4.0.0.83 that is included with McAfee VirusScan. Other products that contain the vulnerability ActiveX control may also be affected.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
The vulnerability has reportedly been fixed via automatic update.
Provided and/or discovered by:
Peter Vreugdenhil
Changelog:
2005-12-21: Updated list of affected products.
Original Advisory:
iDEFENSE:
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=358
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
8 Related Secunia Security Advisories
|
|
|
1. McAfee SecurityCenter Subscription Manager ActiveX Control Buffer Overflow
|
|
2. McAfee SecurityCenter Subscription Manager Buffer Overflow
|
|
3. McAfee VirusScan DUNZIP32.dll Buffer Overflow Vulnerability
|
|
4. McAfee Multiple Products LHA File Handling Buffer Overflow
|
|
5. McAfee Anti-Virus Zip Archive Virus Detection Bypass Vulnerability
|
|
6. McAfee VirusScan System Scan Privilege Escalation Vulnerability
|
|
7. Multiple AV Products bzip2 Processing Denial of Service Vulnerability
|
|
8. McAfee VirusScan privilege escalation
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
