{"type": "osvdb", "published": "2000-11-03T10:15:24", "href": "https://vulners.com/osvdb/OSVDB:6289", "bulletinFamily": "software", "cvss": {"vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/", "score": 4.6}, "viewCount": 2, "edition": 1, "reporter": "Richard Fry(RichardFry@halifax.co.uk)", "title": "McAfee VirusScan Improper ImagePath Quoting", "affectedSoftware": [{"operator": "eq", "version": "4.5", "name": "VirusScan"}], "enchantments": {"score": {"value": 6.3, "vector": "NONE", "modified": "2017-04-28T13:20:01", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2000-1128"]}], "modified": "2017-04-28T13:20:01", "rev": 2}, "vulnersScore": 6.3}, "references": [], "id": "OSVDB:6289", "lastseen": "2017-04-28T13:20:01", "cvelist": ["CVE-2000-1128"], "modified": "2000-11-03T10:15:24", "description": "## Vulnerability Description\nMcAfee VirusScan contains a flaw that may allow a malicious user to execute arbitrary code. The problem is that the default configuration of McAfee VirusScan does not quote the ImagePath variable, which improperly sets the search path. It is possible that the flaw may allow a malicious user to place an arbitrary file called \"command.exe\" in the \"C:\\Pogram Files\" directory, which could be executed with Local System privileges when the computer is rebooted, resulting in a loss of integrity.\n## Solution Description\nUpgrade to version 4.5 Service Pack 1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nMcAfee VirusScan contains a flaw that may allow a malicious user to execute arbitrary code. The problem is that the default configuration of McAfee VirusScan does not quote the ImagePath variable, which improperly sets the search path. It is possible that the flaw may allow a malicious user to place an arbitrary file called \"command.exe\" in the \"C:\\Pogram Files\" directory, which could be executed with Local System privileges when the computer is rebooted, resulting in a loss of integrity.\n## References:\nVendor URL: http://www.networkassociates.com/us/products/mcafee/end_of_life.htm\nMail List Post: http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0011&L=ntbugtraq&F=&S=&P=2187\nISS X-Force ID: 5484\n[CVE-2000-1128](https://vulners.com/cve/CVE-2000-1128)\nBugtraq ID: 1920\n"}

{"cve": [{"lastseen": "2021-02-02T05:19:03", "description": "The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse \"common.exe\" program in the C:\\Program Files directory.", "edition": 4, "cvss3": {}, "published": "2001-01-09T05:00:00", "title": "CVE-2000-1128", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 3.9, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 4.6, "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "LOCAL", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2000-1128"], "modified": "2008-09-05T20:22:00", "cpe": ["cpe:/a:mcafee:virusscan:4.5"], "id": "CVE-2000-1128", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-1128", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:mcafee:virusscan:4.5:*:*:*:*:*:*:*"]}]}