Vulnerabilities > CVE-2002-2282 - Unspecified vulnerability in Mcafee Virusscan 4.5.1

CVSS 6.9 - MEDIUM

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

mcafee

NVD

Published: 2002-12-31

Updated: 2017-07-29

Summary

McAfee VirusScan 4.5.1, when the WebScanX.exe module is enabled, searches for particular DLLs from the user's home directory, even when browsing the local hard drive, which allows local users to run arbitrary code via malicious versions of those DLLs.

Vulnerable Configurations

Part	Description	Count
Application	Mcafee Mcafee Virusscan 4.5.1	1

References

http://archives.neohapsis.com/archives/bugtraq/2002-12/0007.html
http://www.securityfocus.com/bid/6288
https://exchange.xforce.ibmcloud.com/vulnerabilities/10741