Описание
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-4505
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23815
- http://reedarvin.thearvins.com/20051222-01.html
- http://securityreason.com/securityalert/292
- http://securitytracker.com/id?1015404
- http://www.securityfocus.com/archive/1/420104/100/0/threaded
- http://www.securityfocus.com/bid/16040
- http://www.vupen.com/english/advisories/2005/3077
EPSS
CVE ID
Связанные уязвимости
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.
EPSS