CVE-2000-1128

The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse "common.exe" program in the C:\Program Files directory.
References
Link Resource
http://archives.neohapsis.com/archives/ntbugtraq/2000-q4/0073.html Exploit Patch Vendor Advisory
http://www.securityfocus.com/bid/1920 Exploit Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:virusscan:4.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2001-01-09 05:00

Updated : 2023-12-10 10:17


NVD link : CVE-2000-1128

Mitre link : CVE-2000-1128

CVE.ORG link : CVE-2000-1128


JSON object : View

Products Affected

mcafee

  • virusscan