McAfee VirusScan For Linux Insecure DT_RPATH Remote Code Execution Vulnerability
BID:21592
Info
McAfee VirusScan For Linux Insecure DT_RPATH Remote Code Execution Vulnerability
| Bugtraq ID: | 21592 |
| Class: | Design Error |
| CVE: |
CVE-2006-6474 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 14 2006 12:00AM |
| Updated: | Jun 26 2007 05:08PM |
| Credit: | Jakub Moc of Gentoo Linux is credited with the discovery of this vulnerability. |
| Vulnerable: |
McAfee VirusScan for Linux 4510e |
| Not Vulnerable: | |
Discussion
McAfee VirusScan For Linux Insecure DT_RPATH Remote Code Execution Vulnerability
McAfee VirusScan for Linux is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code with the privileges of the process invoking VirusScan.
McAfee VirusScan 4510e and prior versions are vulnerable to this issue.
McAfee VirusScan for Linux is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code with the privileges of the process invoking VirusScan.
McAfee VirusScan 4510e and prior versions are vulnerable to this issue.
Exploit / POC
McAfee VirusScan For Linux Insecure DT_RPATH Remote Code Execution Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
McAfee VirusScan For Linux Insecure DT_RPATH Remote Code Execution Vulnerability
Solution:
Please see the referenced advisory for more information.
Solution:
Please see the referenced advisory for more information.
References
McAfee VirusScan For Linux Insecure DT_RPATH Remote Code Execution Vulnerability
References:
References:
- McAfee AntiVirus Home Page (McAfee)