McAfee VirusScan Enterprise Privilege Escalation Vulnerability (Windows) Network Vulnerability

Summary

This host is installed with McAfee VirusScan Enterprise and is prone to privilege escalation vulnerability.

Impact

Successful exploitation will allow attackers to disable Anti-Virus, add unwanted exclusions or execute unspecified Metasploit Framework module. Impact Level: System/Application

Solution

Update to McAfee VirusScan Enterprise version 8.8 or later, http://www.mcafee.com/us/products/virusscan-enterprise.aspx

Insight

Unspecified flaw allows attackers to escalate privileges.

Affected

McAfee VirusScan Enterprise versions prior to 8.8

References

http://cxsecurity.com/cveshow/CVE-2010-5143
http://www.osvdb.org/84882
https://kc.mcafee.com/corporate/index?page=content&id=SB10014

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-5143

CVSS	Base Score: 2.6 AV:L/AC:H/Au:N/C:N/I:P/A:P

Related Vulnerabilities

OpenSC Security Bypass Vulnerability
Apache <= 1.3.33 htpasswd local overflow
Bournal Privilege Escalation Vulnerability
McAfee VirusScan Enterprise Privilege Escalation Vulnerability (Windows)

Take action and discover your vulnerabilities