PT-2019-5514 · Mcafee · Mcafee Virusscan Enterprise

Glenn Lloyd

Published

2019-12-27

Updated

2020-06-17

CVE-2020-7280

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions McAfee VirusScan Enterprise versions prior to 8.8 Patch 15

Description The issue is related to insufficient access control in McAfee VirusScan Enterprise, which can be exploited to elevate privileges. This can occur during daily DAT updates, allowing local users to delete and create files they would not normally have permission to access by altering the target of symbolic links. This exploit is timing-dependent.

Recommendations For versions prior to 8.8 Patch 15, update to 8.8 Patch 15 or later to resolve the issue. As a temporary workaround, consider restricting access to the symbolic links that can be altered during the daily DAT updates until a patch is applied.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

BDU:2020-03432

CVE-2020-7280

ZDI-20-702

Affected Products

Mcafee Virusscan Enterprise

PT-2019-5514 · Mcafee · Mcafee Virusscan Enterprise

CVE-2020-7280

Weakness Enumeration

Related Identifiers

Affected Products

References · 8