exploitDog

CVE-2005-4505

Опубликовано: 23 дек. 2005

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mcafee:common_management_agent:3.5:p5:*:*:*:*:*:*

cpe:2.3:a:mcafee:virusscan_enterprise:8.0i:p11:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00215

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-jx59-j4wf-4x4h

github

почти 4 года назад

Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.

EPSS

Процентиль: 44%

0.00215

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other