CVE-2006-4886 - The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 a

CVE-2006-4886

Summary

The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users to bypass security restrictions and disable the On-Access Scan option by opening the program via the task bar and quickly clicking the Disable button, possibly due to an interface-related race condition.

References

Vulnerable Configurations

cpe:2.3:a:mcafee:scan_engine:4.4.00:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:scan_engine:4.4.00:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:7.1.0:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:7.1.0:*:*:*:*:*:*:*

CVSS

Base:	3.7 (as of 17-10-2018 - 21:40)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:H/Au:N/C:P/I:P/A:P

refmap via4

bugtraq	20060915 McAfee VirusScan Enterprise - disabling the client side "On-Access Scan"
sreason	1605
xf	mcafee-virusscan-onaccess-security-bypass(28971)

Last major update

17-10-2018 - 21:40

Published

19-09-2006 - 21:07

Last modified

17-10-2018 - 21:40