McAfee VirusScan Virex Insecure File Creation and Scan Bypass Vulnerabilities

Bugtraq ID:	22744
Class:	Design Error
CVE:	CVE-2007-1226
Remote:	No
Local:	Yes
Published:	Feb 27 2007 12:00AM
Updated:	May 12 2015 07:34PM
Credit:	Kevin Finisterre is credited with the discovery of this vulnerability.
Vulnerable:	McAfee Virex 7.7 McAfee Virex
Not Vulnerable:

McAfee VirusScan Virex Insecure File Creation and Scan Bypass Vulnerabilities

McAfee VirusScan Virex is prone to an insecure-file-creation vulnerability and a scan-bypass vulnerability due to a design error.

Successful exploits may allow local attackers to bypass the virus-scanning mechanism and to execute arbitrary code with superuser privileges.

This issue affects McAfee VirusScan for Mac (Virex) 7.7 and prior versions.

McAfee VirusScan Virex Insecure File Creation and Scan Bypass Vulnerabilities

An attacker may exploit this issue by gaining local interactive access to an affected computer.

The following exploit is available:

• /data/vulnerabilities/exploits/22744.pl

McAfee VirusScan Virex Insecure File Creation and Scan Bypass Vulnerabilities

Solution:
The vendor released fixes to address this issue. Please contact the vendor for information on obtaining and applying the fixes.

McAfee VirusScan Virex Insecure File Creation and Scan Bypass Vulnerabilities

References:

• McAfee Homepage (McAfee)
  
• VirusScan Product Homepage (McAfee)
  
• [NETRAGARD-20070220 SECURITY ADVISORY] [McAfee VirusScan for Mac> (Virex) Local (Netragard Security Advisories)