CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2006-6474
https://notcve.org/view.php?id=CVE-2006-6474
14 Dec 2006 — Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the current working directory in the DT_RPATH environment variable, which allows local users to load arbitrary ELF DSO libraries and execute arbitrary code by installing malicious libraries in that directory. Vulnerabilidad de ruta de búsqueda no confiable en McAfee VirusScan para Linux 4510e y versiones anteriores, incluye el directorio de trabajo actual en la variable de entorno DT_RPATH, que permite a usuarios lo... • http://secunia.com/advisories/23278 •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2005-3657
https://notcve.org/view.php?id=CVE-2005-3657
21 Dec 2005 — The ActiveX control in MCINSCTL.DLL for McAfee VirusScan Security Center does not use the IObjectSafetySiteLock API to restrict access to required domains, which allows remote attackers to create or append to arbitrary files via the StartLog and AddLog methods in the MCINSTALL.McLog object. • http://secunia.com/advisories/18169 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0502
https://notcve.org/view.php?id=CVE-2000-0502
08 Jun 2000 — Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion. • http://archives.neohapsis.com/archives/bugtraq/2000-06/0038.html •