This vulnerability allows local attackers to escalate privileges on affected installations of McAfee VirusScan Enterprise. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of log files. By creating a junction, an attacker can abuse the product to overwrite the contents of a chosen file. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM.
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee VirusScan |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ZDI-CAN-10005 is classified with a high severity rating due to its potential to allow privilege escalation.
To fix the vulnerability ZDI-CAN-10005, ensure that you apply the latest patches and updates provided by McAfee for VirusScan Enterprise.
ZDI-CAN-10005 enables local attackers to escalate privileges after gaining low-privileged access on the target system.
ZDI-CAN-10005 affects specific installations of McAfee VirusScan Enterprise, although exact version numbers are not detailed in the advisory.
An attacker must first obtain the ability to execute low-privileged code on the target system to exploit vulnerability ZDI-CAN-10005.