5 matches found
CVE-2009-1348
CVE-2009-1348 affects McAfee antivirus products (VirusScan, Total Protection, Internet Security, SecurityShield for ISA Server/SharePoint, Security for Email Servers/Email Gateway, Active Virus Defense, etc.). The issue is a virus-detection bypass caused by malformed archive metadata in ZIP/RAR f...
CVE-2006-3961
The CVE-2006-3961 vulnerability is a stack buffer overflow in the McAfee Subscription Manager ActiveX control (mcsubmgr.dll) used by McAfee Security Center and related products. A long/ crafted input passed to versus printf-family code (vsprintf) can overflow the stack, potentially allowing remot...
CVE-2005-3377
The CVE-2005-3377 entry describes a vulnerability in McAfee products where a file containing BAT, HTML, or EML data with an EXE-like MZ magic byte sequence can bypass virus scanning and be treated as a safe file type while still potentially enabling execution by applications on the host. Affected...
CVE-2006-5417
The CVE-2006-5417 entry concerns McAfee Network Agent (mcnasvc.exe) version 1.0.178.0 used by multiple McAfee products (e.g., Internet Security Suite, Personal Firewall Plus, VirusScan). A vulnerability allows remote attackers to cause a denial of service (agent crash) by sending a long packet, p...
CVE-2005-1107
McAfee Internet Security Suite 2005 is affected by an insecure default file ACL vulnerability. According to iDEFENSE, the default ACL applied during installation allows non-Administrator users to modify installed files, enabling local privilege escalation to system level or to disable protection ...