McAfee Internet Security Suite Local Insecure Default Permissions Vulnerability
BID:13242
Info
McAfee Internet Security Suite Local Insecure Default Permissions Vulnerability
| Bugtraq ID: | 13242 |
| Class: | Configuration Error |
| CVE: |
CVE-2005-1107 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 19 2005 12:00AM |
| Updated: | Jul 12 2009 02:06PM |
| Credit: | The discoverer of this vulnerability wishes to remain anonymous. iDEFENSE disclosed this issue. |
| Vulnerable: |
McAfee Internet Security Suite 2005 |
| Not Vulnerable: | |
Discussion
McAfee Internet Security Suite Local Insecure Default Permissions Vulnerability
A local insecure default permissions vulnerability affects McAfee Internet Security Suite. This issue is due to a failure of the application to install with secure permissions.
An local attacker may leverage this issue to gain SYSTEM privileges and disable Internet-based security applications.
A local insecure default permissions vulnerability affects McAfee Internet Security Suite. This issue is due to a failure of the application to install with secure permissions.
An local attacker may leverage this issue to gain SYSTEM privileges and disable Internet-based security applications.
Exploit / POC
McAfee Internet Security Suite Local Insecure Default Permissions Vulnerability
No exploit is required to leverage this issue.
No exploit is required to leverage this issue.
Solution / Fix
McAfee Internet Security Suite Local Insecure Default Permissions Vulnerability
Solution:
Reportedly the vendor has supplied fixes for this issue to registered users through the automatic security updates. Please contact the vendor for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Reportedly the vendor has supplied fixes for this issue to registered users through the automatic security updates. Please contact the vendor for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
McAfee Internet Security Suite Local Insecure Default Permissions Vulnerability
References:
References:
- Internet Security Suite Home Page (McAfee)
- McAfee Homepage (McAfee)
- iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecur ("iDEFENSE Labs"