Vulnerabilities > CVE-2007-1226 - Unspecified vulnerability in Mcafee Virex
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL local
mcafee
Summary
McAfee VirusScan for Mac (Virex) before 7.7 patch 1 has weak permissions (0666) for /Library/Application Support/Virex/VShieldExclude.txt, which allows local users to reconfigure Virex to skip scanning of arbitrary files.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://osvdb.org/33798
- http://secunia.com/advisories/24337
- http://securityreason.com/securityalert/2342
- http://www.securityfocus.com/archive/1/461485/100/0/threaded
- http://www.securityfocus.com/bid/22744
- http://www.securitytracker.com/id?1017707
- http://www.vupen.com/english/advisories/2007/0777
- https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=518722&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=518722