CVE-2007-1226

Published: Mar 2, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

McAfee VirusScan for Mac (Virex) before 7.7 patch 1 has weak permissions (0666) for /Library/Application Support/Virex/VShieldExclude.txt, which allows local users to reconfigure Virex to skip scanning of arbitrary files.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

22744

vdb-entry

x_refsource_BID

20070227 [NETRAGARD-20070220 SECURITY ADVISORY] [McAfee VirusScan for Mac (Virex) Local root exploit and Scan Bypass]

mailing-list

x_refsource_BUGTRAQ

1017707

vdb-entry

x_refsource_SECTRACK

https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=518722&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=518722

x_refsource_CONFIRM

ADV-2007-0777

vdb-entry

x_refsource_VUPEN

33798

vdb-entry

x_refsource_OSVDB

24337

third-party-advisory

x_refsource_SECUNIA

2342

third-party-advisory

x_refsource_SREASON

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-1226

Description

Affected Products

References