CVE-2006-4886

3 documents3 sources

Severity

3.7LOW

EPSS

0.1%

top 80.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mcafee Scan Engine Mcafee Virusscan Enterprise

Timeline

PublishedSep 19

Latest updateMay 1

Description

The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users to bypass security restrictions and disable the On-Access Scan option by opening the program via the task bar and quickly clicking the Disable button, possibly due to an interface-related race condition.

CVSS vector

AV:L/AC:H/C:P/I:P/A:PExploitability: 1.9 | Impact: 6.4

Affected Packages2 packages

▶NVDmcafee/virusscan_enterprise7.1.0

▶NVDmcafee/scan_engine4.4.00

🔴Vulnerability Details

GHSA

GHSA-x7j6-25gq-8h9f: The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7↗2022-05-01

▶

CVEList

CVE-2006-4886: The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7↗2006-09-19

▶