CVE-2019-3636

Name of the Vulnerable Software and Affected Versions McAfee Total Protection versions 16.0.R21 and earlier

Description A File Masquerade vulnerability allows an attacker to read the plaintext list of AV-Scan exclusion files from the Windows registry and possibly replace excluded files with potential malware without being detected. The issue is related to a lack of protection for service data, which can be exploited to gain unauthorized access to the list of excluded files and modify it.

Recommendations For McAfee Total Protection versions 16.0.R21 and earlier, update to a version later than 16.0.R21 to resolve the issue. At the moment, there is no information about other specific fixes for this vulnerability.