4.5.1

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

mcafee

NVD

Published: 2004-09-14

Updated: 2017-07-11

Summary

McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" properties of the System Tray applet, which could allow local users to gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Mcafee Mcafee Virusscan 4.5 Mcafee Virusscan 4.5.1	2

References

http://marc.info/?l=bugtraq&m=109526269429728&w=2
http://www.idefense.com/application/poi/display?id=140&type=vulnerabilities
https://exchange.xforce.ibmcloud.com/vulnerabilities/17367