First published: Tue Mar 14 2017(Updated: )
Malicious file execution vulnerability in Intel Security McAfee Security Scan+ (MSS+) before 3.11.266.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee WebAdvisor | =3.7.2 | |
McAfee WebAdvisor | =4.0.1 | |
McAfee WebAdvisor | =4.0.2 | |
McAfee Cloud AV | ||
McAfee Security Scan Plus |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2015-8991 is considered a moderate severity vulnerability due to its ability to allow malicious file execution during specific software operations.
To fix CVE-2015-8991, update your software to version 3.11.266.3 or later for Intel Security McAfee Security Scan+.
CVE-2015-8991 affects Intel Security McAfee Security Scan+ and multiple versions of McAfee Security Webadvisor.
CVE-2015-8991 is a malicious file execution vulnerability that allows attackers to exploit the product during installation or uninstallation.
CVE-2015-8991 was disclosed in 2015, highlighting vulnerabilities in specific versions of McAfee software.