2 matches found
CVE-2000-1128
The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse "common.exe" program in the C:\Program Files directory...
CVE-2000-1128
The CVE describes a local privilege escalation in McAfee VirusScan 4.5 caused by not quoting ImagePath, which can allow a local user to place a Trojan executable (common.exe) in C:\Program Files by altering the search path. The affected component is the VirusScan service/installation that reads t...