CVE-2016-3984

First published: Fri Apr 08 2016(Updated: )

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) before 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control (MDC) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Endpoint Security (ENS) 10.x before 10.1, Host Intrusion Prevention Service (IPS) 8.0 before 8.0.0.3624, and VirusScan Enterprise (VSE) 8.8 before P7 (8.8.0.1528) on Windows allows local administrators to bypass intended self-protection rules and disable the antivirus engine by modifying registry keys.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/last-modified-date
• agent/softwarecombine
• agent/first-publish-date
• collector/nvd-index
• agent/software-canonical-lookup-request
• agent/severity
• agent/weakness
• agent/author
• agent/tags
• agent/description
• agent/event
• agent/references
• collector/mitre-cve
• source/MITRE
• vendor/mcafee
• canonical/mcafee active response
• version/mcafee active response/1.1.0.158
• canonical/mcafee agent
• version/mcafee agent/5.0.2.285
• canonical/mcafee data exchange layer
• version/mcafee data exchange layer/2.0.0.430.1
• canonical/mcafee data loss prevention endpoint
• version/mcafee data loss prevention endpoint/9.3.0
• version/mcafee data loss prevention endpoint/9.4.0
• canonical/mcafee endpoint security
• version/mcafee endpoint security/10.0.1
• canonical/mcafee host intrusion prevention
• version/mcafee host intrusion prevention/8.0.0
• canonical/mcafee virusscan enterprise
• version/mcafee virusscan enterprise/8.8.0