- Description
- The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users to bypass security restrictions and disable the On-Access Scan option by opening the program via the task bar and quickly clicking the Disable button, possibly due to an interface-related race condition.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 3.7
- Impact score
- 6.4
- Exploitability score
- 1.9
- Vector string
- AV:L/AC:H/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mcafee:scan_engine:4.4.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DBD1ABAD-780A-49A7-AD1A-1B8E9BFB644D"
},
{
"criteria": "cpe:2.3:a:mcafee:virusscan_enterprise:7.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E797D6C7-39FE-4A2D-B1CF-32FE75DBB8E5"
}
],
"operator": "OR"
}
]
}
]