Virusscan Enterprise Security Vulnerabilities and Issues — Virusscan Enterprise CVE List

Lucene search

McafeeVirusscan Enterprise

7 matches found

CVE•added 2020/06/10 12:15 p.m.•49 views

CVE-2020-7280

Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links. This is timing dep...

7.8CVSS7.5AI score0.00042EPSS

CVE•added 2007/03/20 10:19 p.m.•47 views

CVE-2007-1538

McAfee VirusScan Enterprise 8.5.0.i uses insecure permissions for certain Windows Registry keys, which allows local users to bypass local password protection via the UIP value in (1) HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\DesktopProtection or (2) HKEY_LOCAL_MACHINE\SOFTWARE\Network Associates\TVD\Virus...

7.5CVSS6.6AI score0.00425EPSS

CVE•added 2017/03/14 10:59 p.m.•47 views

CVE-2016-8022

Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to execute arbitrary code or cause a denial of service via a crafted authentication cookie.

7.5CVSS8AI score0.08579EPSS

CVE•added 2020/06/10 12:15 p.m.•46 views

CVE-2019-3585

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow local users to interact with the On-Access Scan Messages - Threat Alert Window with elevated privileges via running McAfee Tray with elevated privileges.

7.8CVSS7.1AI score0.00037EPSS

CVE•added 2005/12/23 12:3 a.m.•42 views

CVE-2005-4505

Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Pr...

7.2CVSS7.2AI score0.00215EPSS

CVE•added 2009/04/30 8:30 p.m.•42 views

CVE-2009-1348

The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security for Microsoft Sharepoint, Security for Email Servers, Email Gateway, and Active Virus Defense allows remote attackers to bypass virus detection via (1) an invali...

7.6CVSS6.7AI score0.00449EPSS

CVE•added 2007/04/19 10:19 a.m.•37 views

CVE-2007-2152

Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to execute arbitrary code via a long filename containing multi-byte (Unicode) characters.

7.9CVSS7.8AI score0.25578EPSS