6.6

CVE-2007-1227

Exploit
VShieldCheck in McAfee VirusScan for Mac (Virex) before 7.7 patch 1 allow local users to change permissions of arbitrary files via a symlink attack on /Library/Application Support/Virex/VShieldExclude.txt, as demonstrated by symlinking to the root crontab file to execute arbitrary commands.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
McafeeVirex Update- Editionmac Version <= 7.7
McafeeVirex Version6.2 Update- Editionmac
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.76% 0.503
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.6 2.7 10
AV:L/AC:M/Au:S/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/24337
Vendor Advisory
http://securityreason.com/securityalert/2342
Exploit
http://www.securityfocus.com/archive/1/461485/100/0/threaded
http://www.securityfocus.com/bid/22744
Exploit
http://www.securitytracker.com/id?1017707
http://www.vupen.com/english/advisories/2007/0777
https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=518722&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=518722
http://osvdb.org/33797
https://exchange.xforce.ibmcloud.com/vulnerabilities/32729