CVE-2019-3667

CVE-2019-3667 affects McAfee TechCheck (Windows client) up to version 3.0.0.17, where a DLL search order hijacking vulnerability allows a local attacker to execute arbitrary code by placing a malicious DLL in a local folder. The affected component is McAfee TechCheck’s Windows client; root cause ...

CVE-2022-0129

CVE-2022-0129 affects McAfee TechCheck prior to 4.0.0.2. The vulnerability is an uncontrolled search path element allowing a local administrator to load a crafted DLL from the process directory, gaining SYSTEM-level privileges. Root cause: DLLs placed in the executable’s directory are loaded at r...