First published: Fri Mar 02 2007(Updated: )
VShieldCheck in McAfee VirusScan for Mac (Virex) before 7.7 patch 1 allow local users to change permissions of arbitrary files via a symlink attack on /Library/Application Support/Virex/VShieldExclude.txt, as demonstrated by symlinking to the root crontab file to execute arbitrary commands.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee VirusScan Plus | <=7.7 | |
McAfee VirusScan Plus | =6.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2007-1227 is considered a moderately severe vulnerability that allows local users to exploit file permissions.
To fix CVE-2007-1227, update McAfee VirusScan for Mac (Virex) to version 7.7 patch 1 or later.
CVE-2007-1227 affects McAfee Virex versions prior to 7.7 and specifically version 6.2 on Mac systems.
CVE-2007-1227 is associated with a symlink attack that can change file permissions of arbitrary files.
CVE-2007-1227 can be exploited by local users with the ability to create symbolic links.