-
April 19th, 2005, 02:27 PM
#1
** HEAD'S UP ** McAfee Internet Security vulnerebality.
Greeting's
A new vulnerability has been found in Mcafee Internet Security which can lead to "Manipulation of data" and/or "Privilege escalation". Classified as "LESS CRITICAL" a patch is being by the McAfee through their update technology.
The problem is caused due to insecure default file ACLs allowing non-administrative users to modify the installed files. This can be exploited to gain escalated privileges by e.g. replacing a program running as a system service with a malicious program.
More can be found here : http://secunia.com/advisories/14989/
Original Advisory: http://www.idefense.com/applicat...?...ulnerabilities
There is no advisory by the manufacturer (McAfee)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|