McAfee VirusScan Enterprise < 8.8 / 8.7 HF643440 CLI Local Privilege Escalation

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an antivirus application that is affected
by a CLI local privilege escalation vulnerability.

Description :

The remote Windows host has a version of McAfee VirusScan Enterprise
(VSE) prior to 8.8 or 8.7 Hot-Fix 643440. It is, therefore, reportedly
affected by a CLI local privilege escalation vulnerability that could
disable VSE and its connection to McAfee ePolicy Orchestrator (ePO).

See also :

https://kc.mcafee.com/corporate/index?page=content&id=SB10014

Solution :

Upgrade to VSE 8.8 (or later) or apply 8.7 Hot-Fix 643440.

Risk factor :

Low / CVSS Base Score : 2.6
(CVSS2#AV:L/AC:H/Au:N/C:N/I:P/A:P)

Family: Windows

Nessus Plugin ID: 72204 ()

Bugtraq ID:

CVE ID: CVE-2010-5143