3 matches found
McAfee VirusScan Enterprise Untrusted Search Path Vulnerability (Windows)
This host is installed with McAfee VirusScan Enterprise and is prone to untrusted search path vulnerability. OpenVAS Vulnerability Test $Id: gbmcafeevseuntrustedsearchpathvulnwin.nasl 6115 2017-05-12 09:03:25Z teissa $ McAfee VirusScan Enterprise Untrusted Search Path Vulnerability Windows Author...
CVE-2009-5118
CVE-2009-5118 affects McAfee VirusScan Enterprise; untrusted search path allows local privilege escalation via a Trojan DLL when scanning a document on a remote share, in versions before 8.7i. The vulnerability stems from insecure DLL search behavior (lookups in the current working directory). Op...
McAfee VirusScan Enterprise Path Subversion Arbitrary DLL Injection Code Execution
The version of McAfee VirusScan Enterprise installed on the remote Windows host is earlier than 8.7i. Such versions insecurely look in their current working directory when resolving DLL dependencies, such as for 'traceapp.dll'. Attackers may exploit the issue by placing a specially crafted DLL fi...